CVE-2024-5660

CRITICAL

9.8

Beschreibung

Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.

CVE Details

CVSS v3.1 Bewertung9.8

SchweregradCRITICAL

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionNONE

Veroffentlicht12/10/2024

Zuletzt geandert1/5/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

arm:cortex-a710arm:cortex-a710_firmwarearm:cortex-a77arm:cortex-a77_firmwarearm:cortex-a78arm:cortex-a78_firmwarearm:cortex-a78aearm:cortex-a78ae_firmwarearm:cortex-a78carm:cortex-a78c_firmwarearm:cortex-x1arm:cortex-x1_firmwarearm:cortex-x1carm:cortex-x1c_firmwarearm:cortex-x2arm:cortex-x2_firmwarearm:cortex-x3arm:cortex-x3_firmwarearm:cortex-x4arm:cortex-x4_firmwarearm:cortex-x925arm:cortex-x925_firmwarearm:neoverse-v1arm:neoverse-v1_firmwarearm:neoverse-v2arm:neoverse-v2_firmwarearm:neoverse-v3arm:neoverse-v3_firmwarearm:neoverse-v3aearm:neoverse-v3ae_firmwarearm:neoverse_n2arm:neoverse_n2_firmware

Schwachen (CWE)

CWE-668

Referenzen

https://developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-5660(arm-security@arm.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.