LOW🇵🇱 Wersja polska

CVE-2026-0995

CVSS 3.6v3.1pub. 2026-03-02upd. 2026-04-20

An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under certain conditions, a TLBI+DSB might fail to ensure the completion of memory accesses related to SME.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L
  • Arm C1 Pro

    HW
    Arm
    wszystkie wersje
  • Arm C1 Pro Firmware

    OS
    Arm
    < r1p2-50eac0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-7881MEDIUM5.1ten sam produkt

An unprivileged context can trigger a data memory-dependent prefetch engine to fetch the contents of a privile...

CVE-2026-34877CRITICAL9.8PL ✓ten sam vendor

RCE przez deserializację kontekstu SSL w Mbed TLS

CVE-2026-34872CRITICAL9.1PL ✓ten sam vendor

Brak weryfikacji wkładu strony w FFDH w Mbed TLS i TF-PSA-Crypto

CVE-2024-5660CRITICAL9.8PL ✓ten sam vendor

Arm Cortex/Neoverse: obejście ochrony Stage-2 przez Hardware Page Aggregation

CVE-2024-48984CRITICAL9.8PL ✓ten sam vendor

Buffer overflow w parserze HCI raportów BLE w Arm Mbed OS 6.16.0