arm

194 tracked vulnerabilities.

CVE-2021-36647 MEDIUM
Mbed TLS < 2.16.11 - Use of a Broken or Risky Cryptographic Algorithm in mbedtls_mpi_exp_mod
Jan 17, 2023
CVSS 4.7
EPSS 0.00
CVE-2021-27435 HIGH
ARM mbed <6.3.0 - Memory Corruption
May 03, 2022
CVSS 7.3
EPSS 0.04
CVE-2021-27433 HIGH
ARM mbed-ualloc <1.3.0 - Memory Corruption
May 03, 2022
CVSS 7.3
EPSS 0.04
CVE-2021-27431 HIGH
ARM CMSIS RTOS2 <2.1.3 - Memory Corruption
May 03, 2022
CVSS 7.3
EPSS 0.01
CVE-2021-43666 HIGH
mbed TLS < 3.0.0 - Denial of Service in mbedtls_pkcs12_derivation
Mar 24, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-43619 HIGH
Trusted Firmware M <1.4.2 - Buffer Overflow
Mar 01, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-44331 HIGH
ARM astcenc 3.2.0 - Out-of-bounds Write in encode_ise()
Feb 28, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-43086 CRITICAL
ARM astcenc 3.2.0 - Buffer Overflow
Feb 28, 2022
CVSS 9.8
EPSS 0.00
CVE-2021-44828 HIGH
Arm Mali GPU Kernel Driver Midgard r26p0-r30p0, Bifrost r0p0-r34p0, Valhall r19p0-r34p0 - Out-of-bounds Write
Jan 14, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-45451 HIGH
Mbed TLS < 3.1.0 - Policy Bypass and Oracle-Based Decryption via psa_aead_generate_nonce
Dec 21, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-45450 HIGH
Mbed TLS < 2.28.0 and 3.x < 3.1.0 - Policy Bypass via PSA Cipher IV Generation
Dec 21, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-44732 CRITICAL
Mbed TLS < 3.0.1 - Double Free in Out-of-Memory Conditions
Dec 20, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-35465 LOW
Arm Products <2021-08-23 - Privilege Escalation
Aug 23, 2021
CVSS 3.4
EPSS 0.00
CVE-2021-24119 MEDIUM
Mbed TLS < 2.26.0 - Side-Channel Information Disclosure via Base64 PEM Decoding
Jul 14, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-26314 MEDIUM
Xen - Observable Timing Discrepancy via Floating Point Value Injection
Jun 09, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-26313 MEDIUM
Xen - Observable Timing Discrepancy via Speculative Code Store Bypass
Jun 09, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-27562 MEDIUM KEV
Arm Trusted Firmware M <1.2 - Info Disclosure
May 25, 2021
CVSS 5.5
EPSS 0.45
CVE-2021-29256 HIGH KEV
Arm Mali GPU Kernel Driver Bifrost r16p0-r29p0 Midgard r28p0-r30p0 Valhall r19p0-r29p0 - Use-After-Free
May 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28664 HIGH KEV
Arm Mali GPU Kernel Driver Bifrost r0p0-r29p0 Midgard r8p0-r30p0 Valhall r19p0-r29p0 - Out-of-bounds Write
May 10, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28663 HIGH KEV
Arm Bifrost/Midgard/Valhall GPU Kernel Driver - Use-After-Free in GPU Memory Operations
May 10, 2021
CVSS 8.8
EPSS 0.04
CVE-2020-36478 HIGH
Mbed TLS < 2.25.0, < 2.16.9 LTS, < 2.7.18 LTS - Improper Certificate Validation
Aug 23, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-36477 MEDIUM
Mbed TLS < 2.24.0 - Improper Certificate Validation via SubjectAltName Extension
Aug 23, 2021
CVSS 5.9
EPSS 0.00
CVE-2020-36476 HIGH
Mbed TLS <2.24.0 - Memory Corruption
Aug 23, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-36475 HIGH
Mbed TLS < 2.25.0, < 2.16.9 LTS, < 2.7.18 LTS - Denial of Service via mbedtls_mpi_exp_mod Buffer Size Miscalculations
Aug 23, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-36426 HIGH
Arm Mbed TLS < 2.24.0 - Out-of-bounds Read in X.509 CRL Parser
Jul 19, 2021
CVSS 7.5
EPSS 0.01
Products
mbed_tls 73 valhall_gpu_kernel_driver 52 bifrost_gpu_kernel_driver 33 5th_gen_gpu_architecture_kernel_driver 25 midgard_gpu_kernel_driver 18 avalon_gpu_kernel_driver 6 cortex-a 6 cortex-a57_firmware 6 cortex-a72_firmware 6 cortex-a73_firmware 6 cortex-a77_firmware 6 mbed 6 mbed_os 6 cortex-a75_firmware 5 cortex-a78_firmware 5 tf-psa-crypto 5 arm_development_studio 4 cortex-a710_firmware 4 cortex-a76_firmware 4 cortex-a78ae_firmware 4 cortex-x1_firmware 4 cortex-x2_firmware 4 mali_gpu_kernel_driver 4 mbed_crypto 4 neoverse_n2_firmware 4 trusted_firmware-m 4 5th_gen_gpu_architecture_userspace_driver 3 arm_compiler 3 arm_compiler_for_embedded_fusa 3 arm_compiler_for_functional_safety 3
Quick Filters
Critical CVEs With Exploits In CISA KEV