Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arm vulnerabilities and exploits
(subscribe to this query)
454
VMScore
CVE-2017-9607
The BL1 FWU SMC handling code in ARM Trusted Firmware prior to 1.4 might allow malicious users to write arbitrary data to secure memory, bypass the bl1_plat_mem_check protection mechanism, cause a denial of service, or possibly have unspecified other impact via a crafted AArch32 ...
Arm Arm-trusted-firmware
NA
CVE-2022-38181
The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.
Arm Valhall Gpu Kernel Driver R39p0
Arm Bifrost Gpu Kernel Driver R39p0
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
3 Github repositories
NA
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verifi...
Arm Trusted Firmware-m 1.8.0
Arm Trusted Firmware-m 1.7.0
Arm Trusted Firmware-m 1.6.0
Arm Trusted Firmware-m 1.6.1
NA
CVE-2023-28147
An issue exists in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p...
Arm Valhall Gpu Kernel Driver
Arm Avalon Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
NA
CVE-2022-46395
An issue exists in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 through r41p0 before r42p0, Valhall r19p0 through r41p0 before r42p0,...
Arm Avalon Gpu Kernel Driver R41p0
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
1 Github repository
NA
CVE-2023-4272
A local non-privileged user can make GPU processing operations that expose sensitive data from previously freed memory.
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Mali Gpu Kernel Driver R41p0
Arm Midgard Gpu Kernel Driver
NA
CVE-2023-32804
Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited...
Arm Midgard Gpu Kernel Driver
Arm 5th Gen Gpu Architecture Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
NA
CVE-2023-33200
A local non-privileged user can make improper GPU processing operations to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory.
Arm Mali Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
890
VMScore
CVE-2022-28349
Arm Mali GPU Kernel Driver has a use-after-free: Midgard r28p0 through r29p0 before r30p0, Bifrost r17p0 through r23p0 before r24p0, and Valhall r19p0 through r23p0 before r24p0.
Arm Midguard Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
NA
CVE-2022-46891
An issue exists in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifrost r1p0 through r40p0, and Valhall r19p0 through ...
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »