CVE-2024-7883

When using Arm Cortex-M Security Extensions (CMSE), Secure stack 
contents can be leaked to Non-secure state via floating-point registers 
when a Secure to Non-secure function call is made that returns a 
floating-point value and when this is the first use of floating-point 
since entering Secure state. This allows an attacker to read a limited 
quantity of Secure stack contents with an impact on confidentiality. 
This issue is specific to code generated using LLVM-based compilers.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
ArmCNA
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
armarm_compiler_for_embedded
6.6 ≤
𝑥
< 6.23
armarm_compiler_for_embedded_fusa
6.16
armarm_compiler_for_embedded_fusa
6.21
armarm_compiler_for_functional_safety
6.6
armclang
11.0.0 ≤
𝑥
< 20.1.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
llvm-toolchain-14
bookworm
ignored
bullseye
ignored
trixie
ignored
sid
vulnerable
llvm-toolchain-15
bookworm
vulnerable
bullseye
ignored
trixie
ignored
llvm-toolchain-16
bullseye
ignored
bookworm
ignored
trixie
ignored
llvm-toolchain-17
trixie
ignored
bookworm
ignored
bullseye
ignored
sid
1:17.0.6-23
fixed
llvm-toolchain-18
trixie
ignored
bookworm
ignored
bullseye
ignored
forky
1:18.1.8-20
fixed
sid
1:18.1.8-20
fixed
llvm-toolchain-19
bullseye (security)
vulnerable
bookworm
ignored
trixie
ignored
bullseye
ignored
forky
1:19.1.7-19
fixed
sid
1:19.1.7-20
fixed
llvm-toolchain-21
forky
1:21.1.8-1
fixed
sid
1:21.1.8-1
fixed
bookworm
ignored
bullseye
ignored
trixie
ignored
Common Weakness Enumeration
References
https://developer.arm.com/Arm%20Security%20Center/Cortex-M%20Security%20Extensions%20Vulnerability