CVE-2024-10929

Feb. 3, 2025, 3:15 p.m.

5.1
Medium

Description

In certain circumstances, an issue in Arm Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75 may allow an adversary to gain a weak form of control over the victim's branch history.

Product(s) Impacted

Product Versions
Arm Cortex-A72 processor
  • before r1p0
Arm Cortex-A73 processor
Arm Cortex-A75 processor

Weaknesses

References

https://developer.arm.com/Arm%20Security%20Center/Spectre-BSE

Tags

arm-security@arm.com
2025-01-22
CVE-2024-10929

CVSS Score

5.1 / 10

CVSS Data

  • Attack Vector: LOCAL
  • Attack Complexity: LOW
  • Privileges Required: NONE
  • Scope: UNCHANGED
  • Confidentiality Impact: LOW
  • Integrity Impact: LOW
  • Availability Impact: NONE
    • View Vector String

    CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Date

  • Published: Jan. 22, 2025, 4:15 p.m.
  • Last Modified: Feb. 3, 2025, 3:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

arm-security@arm.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.