Cva6 Security Vulnerabilities - January
CVA6 commit 909d85a accesses invalid memory when reading the value of MHPMCOUNTER30.
7.5CVSS
7.5AI Score
0.002EPSS
CVA6 commit 909d85a gives incorrect permission to use special multiplication units when the format of instructions is wrong.
7.5CVSS
7.4AI Score
0.001EPSS
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted sfence.vma instructions rather create an exception.
5.5CVSS
5.5AI Score
0.0004EPSS
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception.
5.5CVSS
5.5AI Score
0.0004EPSS
The mstatus.sd field in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a does not update when the mstatus.fs field is set to Dirty.
9.8CVSS
9.3AI Score
0.002EPSS
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMA violation occurs during address translation.
5.5CVSS
5.5AI Score
0.0004EPSS
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a implements an incorrect exception type when an illegal virtual address is loaded.
5.5CVSS
5.5AI Score
0.0004EPSS
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application.
5.5CVSS
5.5AI Score
0.0004EPSS
The *tval of ecall/ebreak in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a was discovered to be incorrect.
5.5CVSS
5.5AI Score
0.0004EPSS
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMP violation occurs during address translation.
5.5CVSS
5.5AI Score
0.001EPSS