Weakness in Arm Cortex Processors Allowing Potential Control Over Branch History
CVE-2024-10929

5.1MEDIUM

Key Information:

Vendor: Arm
Status: Cortex-a72; Cortex-a73; Cortex-a75
Vendor: CVE Published:; 22 January 2025

What is CVE-2024-10929?

Certain versions of Arm Cortex-A72, Cortex-A73, and Cortex-A75 processors may be susceptible to a vulnerability that can allow an adversary to gain a weak form of control over branch history. This can potentially enable exploitation scenarios that compromise the integrity of execution flow on affected devices, emphasizing the importance of patching and security best practices in critical systems.

Affected Version(s)

Cortex-A72 0

Cortex-A73 0

Cortex-A75 0

References

https://developer.arm.com/Arm%20Security%20Center/Spectre...

CVSS V3.1

Score:

5.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2025
Vulnerability Reserved
Nov 6, 2024