CVE-2024-7881

CVSS 5.1 MEDIUMEPSS 0.2%CWE-1422

An unprivileged context can trigger a data memory-dependent prefetch engine to fetch the contents of a privileged location and consume those contents as an address that is also dereferenced.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Productos afectados

Arm · C1-Premium Arm · C1-Pro Arm · C1-Ultra Arm · Cortex-X3 Arm · Cortex-X4 Arm · Cortex-X925 Arm · Neoverse V2 Arm · Neoverse V3 Arm · Neoverse V3AE

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-7881