Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arm vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-15031
In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restoring the PMCR_EL0 register can leak secure world timing information.
Arm Arm-trusted-firmware
8.8
CVSSv3
CVE-2022-38181
The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.
Arm Valhall Gpu Kernel Driver R39p0
Arm Bifrost Gpu Kernel Driver R39p0
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
2 Github repositories
7.5
CVSSv3
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verifi...
Arm Trusted Firmware-m 1.8.0
Arm Trusted Firmware-m 1.7.0
Arm Trusted Firmware-m 1.6.0
Arm Trusted Firmware-m 1.6.1
5.5
CVSSv3
CVE-2023-28147
An issue exists in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p...
Arm Valhall Gpu Kernel Driver
Arm Avalon Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
5.5
CVSSv3
CVE-2023-4272
A local non-privileged user can make GPU processing operations that expose sensitive data from previously freed memory.
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Mali Gpu Kernel Driver R41p0
Arm Midgard Gpu Kernel Driver
8.8
CVSSv3
CVE-2022-46395
An issue exists in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 through r41p0 before r42p0, Valhall r19p0 through r41p0 before r42p0,...
Arm Avalon Gpu Kernel Driver R41p0
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
1 Github repository
7.8
CVSSv3
CVE-2023-32804
Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited...
Arm Midgard Gpu Kernel Driver
Arm 5th Gen Gpu Architecture Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
8.8
CVSSv3
CVE-2021-28663
The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through...
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
1 Github repository
9.8
CVSSv3
CVE-2022-28348
Arm Mali GPU Kernel Driver (Midgard r4p0 through r31p0, Bifrost r0p0 through r36p0 before r37p0, and Valhall r19p0 through r36p0 before r37p0) allows improper GPU memory operations to reach a use-after-free situation.
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
9.8
CVSSv3
CVE-2022-28349
Arm Mali GPU Kernel Driver has a use-after-free: Midgard r28p0 through r29p0 before r30p0, Bifrost r17p0 through r23p0 before r24p0, and Valhall r19p0 through r23p0 before r24p0.
Arm Midguard Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987
buffer overflow
CVE-2024-28890
CVE-2024-27574
CVE-2024-27347
CVE-2024-31450
privilege
SSTI
CVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »