Vulnerabilities > ARM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-05 | CVE-2024-4607 | Use After Free vulnerability in ARM products Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r41p0 through r49p0; Valhall GPU Kernel Driver: from r41p0 through r49p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r49p0. | 7.8 |
| 2024-06-07 | CVE-2024-4610 | Use After Free vulnerability in ARM products Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r34p0 through r40p0; Valhall GPU Kernel Driver: from r34p0 through r40p0. | 7.8 |
| 2024-02-05 | CVE-2023-5249 | Use After Free vulnerability in ARM products Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper memory processing operations to exploit a software race condition. | 7.0 |
| 2024-02-05 | CVE-2023-5643 | Out-of-bounds Write vulnerability in ARM products Out-of-bounds Write vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. | 7.8 |
| 2024-01-31 | CVE-2024-23170 | Information Exposure Through Discrepancy vulnerability in ARM Mbed TLS An issue was discovered in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2. | 5.5 |
| 2024-01-31 | CVE-2024-23775 | Integer Overflow or Wraparound vulnerability in ARM Mbed TLS Integer Overflow vulnerability in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2, allows attackers to cause a denial of service (DoS) via mbedtls_x509_set_extension(). | 7.5 |
| 2024-01-21 | CVE-2023-52353 | Session Fixation vulnerability in ARM Mbed TLS An issue was discovered in Mbed TLS through 3.5.1. | 7.5 |
| 2024-01-21 | CVE-2024-23744 | Unspecified vulnerability in ARM Mbed TLS 3.5.0/3.5.1 An issue was discovered in Mbed TLS 3.5.1. | 7.5 |
| 2024-01-08 | CVE-2023-5091 | Use After Free vulnerability in ARM Valhall GPU Kernel Driver Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory. | 5.5 |
| 2023-12-08 | CVE-2023-34320 | Improper Locking vulnerability in multiple products Cortex-A77 cores (r0p0 and r1p0) are affected by erratum 1508412 where software, under certain circumstances, could deadlock a core due to the execution of either a load to device or non-cacheable memory, and either a store exclusive or register read of the Physical Address Register (PAR_EL1) in close proximity. | 5.5 |