Lucene search
K
ArmCortex-a72 Firmware

6 matches found

CVE
CVE
added 2018/01/04 1:0 p.m.1148 views

CVE-2017-5753

CVE-2017-5753 is part of the Spectre family (Variant 1) described in the SPECTRE_MELTDOWN_ADVISORY: it involves speculative execution and a bounds-check bypass that can enable an unprivileged attacker to read privileged memory via cache timing analysis. IBM’s AIX/VIOS advisories and iFixes addres...

5.6CVSS6.1AI score0.93838EPSS
CVE
CVE
added 2022/03/12 11:57 p.m.511 views

CVE-2022-23960

CVE-2022-23960 affects Arm Cortex and Neoverse processors. It is a Spectre-BHB side-channel issue where shared branch history in the Branch History Buffer can influence mispredicted branches, enabling potential information disclosure through cache allocation. Documents note mitigations include de...

5.6CVSS6.4AI score0.00495EPSS
CVE
CVE
added 2020/06/08 10:46 p.m.199 views

CVE-2020-13844

CVE-2020-13844 relates to Arm Armv8-A core implementations where speculative execution past unconditional changes in control flow can lead to information disclosure via a side-channel (straight-line speculation). The impact is information disclosure with local access; no remote vector is describe...

5.5CVSS5.2AI score0.00504EPSS
CVE
CVE
added 2022/03/09 6:17 p.m.114 views

CVE-2022-25368

CVE-2022-23960 describes Spectre-BHB: an attack on ARM Cortex and Neoverse CPUs that abuse the Branch History Buffer (BHB) to influence mispredicted branches, enabling a cache-related side-channel and potential information disclosure across security contexts. Affected: ARM Cortex and Neoverse pro...

4.7CVSS4.8AI score0.00294EPSS
CVE
CVE
added 2025/01/22 4:5 p.m.63 views

CVE-2024-10929

CVE-2024-10929 affects ARM Cortex-A57, Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75. The issue can allow a local attacker to gain a weak form of control over the victim’s branch history (Spectre-BSE style), with potential indirect-branch exploitation and limited impact to confide...

5.1CVSS6.4AI score0.00165EPSS
CVE
CVE
added 2023/01/10 12:0 a.m.59 views

CVE-2022-48251

CVE-2022-48251 concerns ARMv8 AES instructions, which are described as lacking an algorithm that is intrinsically resistant to power-side-channel attacks. Multiple sources reiterate that power-side-channel attacks are possible but not directly caused by or related to ARM architecture, with no spe...

7.5CVSS7.5AI score0.00828EPSS