Vulnerabilities > ARM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-02 | CVE-2023-28469 | Unspecified vulnerability in ARM products An issue was discovered in the Arm Mali GPU Kernel Driver. | 5.5 |
| 2023-06-02 | CVE-2023-28147 | Unspecified vulnerability in ARM products An issue was discovered in the Arm Mali GPU Kernel Driver. | 5.5 |
| 2023-01-17 | CVE-2021-36647 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in ARM Mbed TLS Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave such as SGX or the TrustZone secure world) to recover the private keys used in RSA. | 4.7 |
| 2022-12-15 | CVE-2022-46392 | Information Exposure Through Discrepancy vulnerability in multiple products An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. | 5.3 |
| 2022-09-01 | CVE-2022-36449 | Use After Free vulnerability in ARM Bifrost, Midgard and Valhall An issue was discovered in the Arm Mali GPU Kernel Driver. | 6.5 |
| 2022-08-02 | CVE-2022-33917 | Unspecified vulnerability in ARM Valhall GPU Kernel Driver An issue was discovered in the Arm Mali GPU Kernel Driver (Valhall r29p0 through r38p0). | 5.5 |
| 2022-03-13 | CVE-2022-23960 | Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. | 5.6 |
| 2022-03-10 | CVE-2022-25368 | Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the CPU BHB) to influence mispredicted branches in the victim's hardware context. | 4.7 |
| 2021-08-23 | CVE-2020-36477 | Improper Certificate Validation vulnerability in ARM Mbed TLS An issue was discovered in Mbed TLS before 2.24.0. | 5.9 |
| 2021-07-19 | CVE-2020-36421 | Information Exposure Through Discrepancy vulnerability in multiple products An issue was discovered in Arm Mbed TLS before 2.23.0. | 5.3 |