exploitDog

GHSA-rmx5-9qww-3c2x

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restoring the PMCR_EL0 register can leak secure world timing information.

In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restoring the PMCR_EL0 register can leak secure world timing information.

Ссылки

EPSS

Процентиль: 72%

0.00721

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2017-15031

CVSS3: 7.5

nvd

около 7 лет назад

In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restoring the PMCR_EL0 register can leak secure world timing information.

EPSS

Процентиль: 72%

0.00721

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200