Known Vulnerabilities for products from Arm
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Arm".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Arm can be found at device.report : Arm
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-23960 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.6 - MEDIUM | 2022-03-13 | 2023-01-20 |
| CVE-2022-22706 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2022-03-03 | 2023-08-08 |
| CVE-2021-43666 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-03-24 | 2023-07-20 |
| CVE-2021-43619 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2022-03-01 | 2022-03-09 |
| CVE-2021-43086 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-02-28 | 2022-03-08 |
| CVE-2021-36647 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.7 - MEDIUM | 2023-01-17 | 2023-01-27 |
| CVE-2021-35465 | Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a VLLDM instruction. A Non-secure... | 3.4 - LOW | 2021-08-23 | 2022-07-12 |
| CVE-2021-29256 | . The Arm Mali GPU kernel driver allows an unprivileged user to achieve access to freed memory, leading to information disclo... | 8.8 - HIGH | 2021-05-24 | 2022-03-22 |
| CVE-2021-28664 | The Arm Mali GPU kernel driver allows privilege escalation or a denial of service (memory corruption) because an unprivileged... | 8.8 - HIGH | 2021-05-10 | 2023-12-13 |
| CVE-2021-28663 | The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishan... | 8.8 - HIGH | 2021-05-10 | 2023-12-13 |
| CVE-2021-27562 | In Arm Trusted Firmware M through 1.2, the NS world may trigger a system halt, an overwrite of secure data, or the printing o... | 5.5 - MEDIUM | 2021-05-25 | 2021-06-08 |
| CVE-2021-27435 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-05-03 | 2022-05-13 |
| CVE-2021-27433 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-05-03 | 2022-05-12 |
| CVE-2021-27431 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-05-03 | 2022-05-13 |
| CVE-2021-26314 | Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating... | 5.5 - MEDIUM | 2021-06-09 | 2023-11-07 |
| CVE-2021-26313 | Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating ... | 5.5 - MEDIUM | 2021-06-09 | 2022-08-01 |
| CVE-2021-24119 | In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administra... | 4.9 - MEDIUM | 2021-07-14 | 2023-02-24 |
| CVE-2020-36478 | An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). A NULL algorithm parameters ... | 7.5 - HIGH | 2021-08-23 | 2023-01-11 |
| CVE-2020-36477 | An issue was discovered in Mbed TLS before 2.24.0. The verification of X.509 certificates when matching the expected common n... | 5.9 - MEDIUM | 2021-08-23 | 2023-01-13 |
| CVE-2020-36476 | An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). There is missing zeroization... | 7.5 - HIGH | 2021-08-23 | 2023-01-11 |
Known software with vulnerabilities from Arm
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Arm | Arm Compiler | 5.00 |
| Operating System | Arm | Arm Trusted Firmware | 2.2 |
| Hardware | Arm | Arm7 | - |
| Operating System | Arm | Arm-trusted-firmware | 0.2 |
| Hardware | Arm | Armv8-m | - |
| Operating System | Arm | Armv8-m Firmware | - |
| Hardware | Arm | Cortex-a | 9 |
| Hardware | Arm | Cortex-a32 | - |
| Operating System | Arm | Cortex-a32 Firmware | - |
| Hardware | Arm | Cortex-a34 | - |
| Operating System | Arm | Cortex-a34 Firmware | - |
| Hardware | Arm | Cortex-a35 | - |
| Operating System | Arm | Cortex-a35 Firmware | - |
| Hardware | Arm | Cortex-a53 | - |
| Operating System | Arm | Cortex-a53 Firmware | - |
| Operating System | Arm | Cortex-a57 Firmware | - |
| Operating System | Arm | Cortex-a72 Firmware | - |
| Operating System | Arm | Cortex-a73 Firmware | - |
| Operating System | Arm | Mbed | 5.0.0 |
| Application | Arm | Mbed Crypto | - |