CVE-2024-7883

31.10.2024, 17:15

When using Arm Cortex-M Security Extensions (CMSE), Secure stack
contents can be leaked to Non-secure state via floating-point registers
when a Secure to Non-secure function call is made that returns a
floating-point value and when this is the first use of floating-point
since entering Secure state. This allows an attacker to read a limited
quantity of Secure stack contents with an impact on confidentiality.
This issue is specific to code generated using LLVM-based compilers.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	3.7 LOW	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Arm	CNA	3.7 LOW	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA-ADP	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 15%

Debian Releases

Debian Product

Codename

llvm-toolchain-14

bookworm	ignored
bullseye	ignored
trixie	ignored
sid	vulnerable

llvm-toolchain-15

bookworm	vulnerable
bullseye	ignored
trixie	ignored

llvm-toolchain-16

bullseye	ignored
bookworm	ignored
trixie	ignored

llvm-toolchain-17

sid	vulnerable
trixie	ignored
bookworm	ignored
bullseye	ignored

llvm-toolchain-18

sid	vulnerable
trixie	ignored
bookworm	ignored
bullseye	ignored

llvm-toolchain-19

bookworm	ignored
bullseye	ignored
trixie	ignored
sid	vulnerable

Common Weakness Enumeration

CWE-226 - Sensitive Information in Resource Not Removed Before Reuse
The product releases a resource such as memory or a file so that it can be made available for reuse, but it does not clear or "zeroize" the information contained in the resource before the product performs a critical state transition or makes the resource available for reuse by other entities.

References

https://developer.arm.com/Arm%20Security%20Center/Cortex-M%20Security%20Extensions%20Vulnerability