CVE-2022-34632

EUVD-2022-37584
Rocket-Chip commit 4f8114374d8824dfdec03f576a8cd68bebce4e56 was discovered to contain insufficient cryptography via the component /rocket/RocketCore.scala.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
Affected Products (NVD)
VendorProductVersion
linuxfoundationrocket_chip_generator
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/chipsalliance/rocket-chip/pull/2950#issuecomment-1106745660
https://github.com/chipsalliance/rocket-chip/pull/2950#issuecomment-1107055607
https://github.com/chipsalliance/rocket-chip/pull/2950/commits/4f8114374d8824dfdec03f576a8cd68bebce4e56
https://github.com/chipsalliance/rocket-chip/pull/2950#issuecomment-1106745660
https://github.com/chipsalliance/rocket-chip/pull/2950#issuecomment-1107055607
https://github.com/chipsalliance/rocket-chip/pull/2950/commits/4f8114374d8824dfdec03f576a8cd68bebce4e56