exploitDog

CVE-2021-41612

Опубликовано: 18 апр. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

An issue was discovered in the ALU unit of the OpenRISC mor1kx processor. The carry flag is not being updated correctly for the subtract instruction, which results in an incorrect value of the carry flag. Any software that relies on this flag may experience corruption in execution.

Ссылки

https://github.com/openrisc/mor1kx/issues/139
VDB Entry
https://seth.engr.tamu.edu/software-releases/thehuzz/
Exploit
Third Party Advisory
https://github.com/openrisc/mor1kx/issues/139
VDB Entry
https://seth.engr.tamu.edu/software-releases/thehuzz/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:openrisc:mor1kx_firmware:*:*:*:*:*:*:*:*

Версия до 5.1 (исключая)

cpe:2.3:h:openrisc:mor1kx:-:*:*:*:*:*:*:*

EPSS

Процентиль: 39%

0.00176

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-qfvq-jc5r-mvjw

CVSS3: 8.8

github

почти 3 года назад

An issue was discovered in the ALU unit of the OpenRISC mor1kx processor. The carry flag is not being updated correctly for the subtract instruction, which results in an incorrect value of the carry flag. Any software that relies on this flag may experience corruption in execution.

EPSS

Процентиль: 39%

0.00176

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo