Vulnerabilities > CVE-2022-34641 - Improper Handling of Exceptional Conditions vulnerability in multiple products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

openhwgroup

boom-core

CWE-755

NVD

Published: 2022-07-18

Updated: 2023-05-26

Summary

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMP violation occurs during address translation.

Vulnerable Configurations

Part	Description	Count
Application	Openhwgroup Openhwgroup Cva6 -	1
Application	Boom-Core Boom Core Riscvc Boom -	1

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://github.com/openhwgroup/cva6/issues/906
https://github.com/riscv-boom/riscv-boom/issues/605
https://github.com/openhwgroup/cva6/pull/908