CVE-2023-46837

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Jan 5, 2024
Updated: Feb 15, 2024
CWE ID 119

Summary

CVE-2023-46837 is a vulnerability affecting Arm's cache cleaning helpers. These helpers are responsible for invalidating the cache for a specific region before allocating guest memory. However, due to arithmetic overflows in the helpers, cache cleaning and invalidation may not occur properly, resulting in undefined behavior. This issue was previously identified in XSA-437, but the proposed solution did not adequately address the vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share