CVE-2023-34320

CVSS Score of 10 (low)

Details

Published Dec 8, 2023
Updated: Dec 13, 2023
CWE ID 667

Summary

CVE-2023-34320 is a vulnerability affecting Cortex-A77 cores (r0p0 and r1p0) due to the execution of certain software under specific circumstances. This vulnerability can potentially deadlock a core when there is a combination of a load to device or non-cacheable memory, and either a store exclusive or register read of the Physical Address Register (PAR_EL1) in close proximity. The vulnerability has a CVSS score of 5.5, indicating a medium severity level. There are 128 reported instances of this vulnerability. It affects numerous products, including those with codes cJ39PY, f3iFOP, f3iFOO, cJ39PZ, and many others. To remediate this vulnerability, it is recommended to apply relevant patches or updates provided by the product manufacturers. The potential danger posed to organizations is that an attacker could exploit this vulnerability to cause deadlock in affected cores, which could lead to system instability or denial-of-service situations.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-34320 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options