CVE-2024-10929

{"id": "CVE-2024-10929", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.1, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.5}]}, "published": "2025-01-22T16:15:28.790", "references": [{"url": "https://developer.arm.com/Arm%20Security%20Center/Spectre-BSE", "tags": ["Vendor Advisory"], "source": "arm-security@arm.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-203"}]}], "descriptions": [{"lang": "en", "value": "In certain circumstances, an issue in Arm Cortex-A57,\u00a0Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75 may allow an adversary to gain a weak form of control over the victim's branch history."}, {"lang": "es", "value": "En determinadas circunstancias, un problema en Arm Cortex-A72 (revisiones anteriores a r1p0), Cortex-A73 y Cortex-A75 puede permitir que un adversario obtenga una forma d\u00e9bil de control sobre el historial de la rama de la v\u00edctima."}], "lastModified": "2025-12-18T15:47:30.560", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68D895EC-B0A9-4292-AC64-60673F72C765"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B00CD88D-5649-403F-A55A-BD49427D30FA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "38768B2B-F1A3-4A76-8716-9520CA075F3D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "16E23102-964E-485D-8EFF-4B1BBFE6EDE4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7173A6DC-4D4E-424C-A922-C16D67627834"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "33B1374D-59E8-4FE5-AC6C-0323AB1DD60D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:arm:cortex-a75_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A891447-2F1D-48B4-AA47-3CB7EA4FDC7C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:arm:cortex-a75:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7C1DF922-1F46-41A6-A367-E56DD8C4163D"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "arm-security@arm.com"}