CVE-2021-35465

Severity Score

3.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a VLLDM instruction. A Non-secure handler may have read or write access to part of a Secure context. This affects Arm Cortex-M33 r0p0 through r1p0, Arm Cortex-M35P r0, Arm Cortex-M55 r0p0 through r1p0, and Arm China STAR-MC1 (in the STAR SE configuration).

Determinados productos de Arm antes del 23-08-2021 no consideran apropiadamente el efecto de las excepciones en una instrucción VLLDM. Un manejador no seguro puede tener acceso de lectura o escritura a parte de un contexto seguro. Esto afecta a Arm Cortex-M33 r0p0 versiones hasta r1p0, Arm Cortex-M35P r0, Arm Cortex-M55 r0p0 versiones hasta r1p0, y Arm China STAR-MC1 (en la configuración STAR SE).

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2021-06-23 CVE Reserved
2021-08-23 CVE Published
2023-03-16 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (2)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://developer.arm.com/support/arm-security-updates	2022-07-12
https://developer.arm.com/support/arm-security-updates/vlldm-instruction-security-vulnerability	2022-07-12

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Arm Search vendor "Arm"	Cortex-m33 Firmware Search vendor "Arm" for product "Cortex-m33 Firmware"	>= r0p0 <= r1p0 Search vendor "Arm" for product "Cortex-m33 Firmware" and version " >= r0p0 <= r1p0"	-	Affected	in	Arm Search vendor "Arm"	Cortex-m33 Search vendor "Arm" for product "Cortex-m33"	-	-	Safe
Arm Search vendor "Arm"	Cortex-m35p Firmware Search vendor "Arm" for product "Cortex-m35p Firmware"	r0 Search vendor "Arm" for product "Cortex-m35p Firmware" and version "r0"	-	Affected	in	Arm Search vendor "Arm"	Cortex-m35p Search vendor "Arm" for product "Cortex-m35p"	-	-	Safe
Arm Search vendor "Arm"	Cortex-m55 Firmware Search vendor "Arm" for product "Cortex-m55 Firmware"	>= r0p0 <= r1p0 Search vendor "Arm" for product "Cortex-m55 Firmware" and version " >= r0p0 <= r1p0"	-	Affected	in	Arm Search vendor "Arm"	Cortex-m55 Search vendor "Arm" for product "Cortex-m55"	-	-	Safe
Arm Search vendor "Arm"	China Star-mc1 Firmware Search vendor "Arm" for product "China Star-mc1 Firmware"	-	-	Affected	in	Arm Search vendor "Arm"	China Star-mc1 Search vendor "Arm" for product "China Star-mc1"	-	-	Safe