Vulnerabilities > ARM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-31 | CVE-2024-23170 | Information Exposure Through Discrepancy vulnerability in ARM Mbed TLS An issue was discovered in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2. | 5.5 |
| 2024-01-08 | CVE-2023-5091 | Use After Free vulnerability in ARM Valhall GPU Kernel Driver Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory. | 5.5 |
| 2023-12-08 | CVE-2023-34320 | Improper Locking vulnerability in multiple products Cortex-A77 cores (r0p0 and r1p0) are affected by erratum 1508412 where software, under certain circumstances, could deadlock a core due to the execution of either a load to device or non-cacheable memory, and either a store exclusive or register read of the Physical Address Register (PAR_EL1) in close proximity. | 5.5 |
| 2023-11-07 | CVE-2023-4272 | Unspecified vulnerability in ARM products A local non-privileged user can make GPU processing operations that expose sensitive data from previously freed memory. | 5.5 |
| 2023-10-03 | CVE-2023-33200 | Use After Free vulnerability in ARM products A local non-privileged user can make improper GPU processing operations to exploit a software race condition. | 4.7 |
| 2023-10-03 | CVE-2023-34970 | Out-of-bounds Write vulnerability in ARM Mali GPU Kernel Driver and Valhall GPU Kernel Driver A local non-privileged user can make improper GPU processing operations to access a limited amount outside of buffer bounds or to exploit a software race condition. | 4.7 |
| 2023-10-01 | CVE-2023-4211 | Use After Free vulnerability in ARM products A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory. | 5.5 |
| 2023-06-02 | CVE-2023-28469 | Unspecified vulnerability in ARM products An issue was discovered in the Arm Mali GPU Kernel Driver. | 5.5 |
| 2023-06-02 | CVE-2023-28147 | Unspecified vulnerability in ARM products An issue was discovered in the Arm Mali GPU Kernel Driver. | 5.5 |
| 2023-01-17 | CVE-2021-36647 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in ARM Mbed TLS Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave such as SGX or the TrustZone secure world) to recover the private keys used in RSA. | 4.7 |