Vulnerabilities > ARM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-03 | CVE-2021-27431 | Unspecified vulnerability in ARM Cmsis-Rtos ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc (local malloc equivalent) function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or injected code execution. | 9.8 |
| 2022-05-03 | CVE-2021-27433 | Integer Overflow or Wraparound vulnerability in ARM Mbed Ualloc 1.3.0 ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function mbed_krbs, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. | 9.8 |
| 2022-05-03 | CVE-2021-27435 | Unspecified vulnerability in ARM Mbed 6.3.0 ARM mbed product Version 6.3.0 is vulnerable to integer wrap-around in malloc_wrapper function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. | 9.8 |
| 2022-03-24 | CVE-2021-43666 | A Denial of Service vulnerability exists in mbed TLS 3.0.0 and earlier in the mbedtls_pkcs12_derivation function when an input password's length is 0. | 7.5 |
| 2022-03-13 | CVE-2022-23960 | Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. | 5.6 |
| 2022-03-10 | CVE-2022-25368 | Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the CPU BHB) to influence mispredicted branches in the victim's hardware context. | 4.7 |
| 2022-03-03 | CVE-2022-22706 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in ARM Bifrost, Midgard and Valhall Arm Mali GPU Kernel Driver allows a non-privileged user to achieve write access to read-only memory pages. | 7.8 |
| 2022-03-01 | CVE-2021-43619 | Classic Buffer Overflow vulnerability in ARM Trusted Firmware-M 1.4.0/1.4.1 Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. | 7.8 |
| 2022-02-28 | CVE-2021-44331 | Out-of-bounds Write vulnerability in ARM Adaptive Scalable Texture Compression Encoder 3.2.0 ARM astcenc 3.2.0 is vulnerable to Buffer Overflow in function encode_ise(). | 7.8 |
| 2022-02-28 | CVE-2021-43086 | Out-of-bounds Write vulnerability in ARM Adaptive Scalable Texture Compression Encoder 3.2.0 ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. | 9.8 |