Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arm vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-15031
In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restoring the PMCR_EL0 register can leak secure world timing information.
Arm Arm-trusted-firmware
NA
CVE-2022-38181
The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.
Arm Valhall Gpu Kernel Driver R39p0
Arm Bifrost Gpu Kernel Driver R39p0
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
2 Github repositories
NA
CVE-2023-28147
An issue exists in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p...
Arm Valhall Gpu Kernel Driver
Arm Avalon Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
NA
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verifi...
Arm Trusted Firmware-m 1.8.0
Arm Trusted Firmware-m 1.7.0
Arm Trusted Firmware-m 1.6.0
Arm Trusted Firmware-m 1.6.1
NA
CVE-2022-46395
An issue exists in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 through r41p0 before r42p0, Valhall r19p0 through r41p0 before r42p0,...
Arm Avalon Gpu Kernel Driver R41p0
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
1 Github repository
NA
CVE-2023-4272
A local non-privileged user can make GPU processing operations that expose sensitive data from previously freed memory.
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Mali Gpu Kernel Driver R41p0
Arm Midgard Gpu Kernel Driver
NA
CVE-2023-32804
Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited...
Arm Midgard Gpu Kernel Driver
Arm 5th Gen Gpu Architecture Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
7.2
CVSSv2
CVE-2021-44828
Arm Mali GPU Kernel Driver (Midgard r26p0 through r30p0, Bifrost r0p0 through r34p0, and Valhall r19p0 through r34p0) allows a non-privileged user to achieve write access to read-only memory, and possibly obtain root privileges, corrupt memory, and modify the memory of other proc...
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
9
CVSSv2
CVE-2021-28664
The Arm Mali GPU kernel driver allows privilege escalation or a denial of service (memory corruption) because an unprivileged user can achieve read/write access to read-only pages. This affects Bifrost r0p0 through r29p0 before r30p0, Valhall r19p0 through r29p0 before r30p0, and...
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
Arm Midgard Gpu Kernel Driver
NA
CVE-2023-33200
A local non-privileged user can make improper GPU processing operations to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory.
Arm Mali Gpu Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »