CVE-2024-5660

CRITICAL

9.8

Description

Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie12/10/2024

Derniere modification1/5/2026

Sourcenvd

Observations honeypot0

Produits affectes

arm:cortex-a710arm:cortex-a710_firmwarearm:cortex-a77arm:cortex-a77_firmwarearm:cortex-a78arm:cortex-a78_firmwarearm:cortex-a78aearm:cortex-a78ae_firmwarearm:cortex-a78carm:cortex-a78c_firmwarearm:cortex-x1arm:cortex-x1_firmwarearm:cortex-x1carm:cortex-x1c_firmwarearm:cortex-x2arm:cortex-x2_firmwarearm:cortex-x3arm:cortex-x3_firmwarearm:cortex-x4arm:cortex-x4_firmwarearm:cortex-x925arm:cortex-x925_firmwarearm:neoverse-v1arm:neoverse-v1_firmwarearm:neoverse-v2arm:neoverse-v2_firmwarearm:neoverse-v3arm:neoverse-v3_firmwarearm:neoverse-v3aearm:neoverse-v3ae_firmwarearm:neoverse_n2arm:neoverse_n2_firmware

Faiblesses (CWE)

CWE-668

References

https://developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-5660(arm-security@arm.com)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.