Vulnerability Details CVE-2025-0647
In certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB invalidation when a TLBI is issued to the PE, either by the same PE or another PE in the shareability domain. In this case, the PE may retain stale TLB entries which should have been invalidated by the TLBI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.3%
CVSS Severity
CVSS v3 Score 7.9
References
Products affected by CVE-2025-0647
-
cpe:2.3:h:arm:c1-premium:-
-
cpe:2.3:h:arm:c1-ultra:-
-
cpe:2.3:h:arm:cortex-a710:-
-
cpe:2.3:h:arm:cortex-x2:-
-
cpe:2.3:h:arm:cortex-x3:-
-
cpe:2.3:h:arm:cortex-x4:-
-
cpe:2.3:h:arm:cortex-x925:-
-
cpe:2.3:h:arm:neoverse-n2:-
-
cpe:2.3:h:arm:neoverse-v2:-
-
cpe:2.3:h:arm:neoverse-v3:-
-
cpe:2.3:h:arm:neoverse-v3ae:-
-
cpe:2.3:o:arm:c1-premium_firmware:-
-
cpe:2.3:o:arm:c1-ultra_firmware:-
-
cpe:2.3:o:arm:cortex-a710_firmware:-
-
cpe:2.3:o:arm:cortex-x2_firmware:-
-
cpe:2.3:o:arm:cortex-x3_firmware:-
-
cpe:2.3:o:arm:cortex-x4_firmware:-
-
cpe:2.3:o:arm:cortex-x925_firmware:-
-
cpe:2.3:o:arm:neoverse-n2_firmware:-
-
cpe:2.3:o:arm:neoverse-v2_firmware:-
-
cpe:2.3:o:arm:neoverse-v3_firmware:-
-
cpe:2.3:o:arm:neoverse-v3ae_firmware:-