Products
UNKNOWN
Arm Cortex-M Security Extensions (CMSE) software
- < 1.4
Source
arm-security@arm.com
Tags
CVE-2024-0151 details
Published : April 24, 2024, 6:15 p.m.
Last Modified : April 24, 2024, 7:58 p.m.
Last Modified : April 24, 2024, 7:58 p.m.
Description
Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions (CMSE), that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to Secure state that are out of range for types smaller than 32-bits. Out of range values might lead to incorrect operations in secure state due.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://developer.arm.com/Arm%20Security%20Center/Cortex-M%20Security%20Extensions | arm-security@arm.com |
This website uses the NVD API, but is not approved or certified by it.