Arm: >> C1-Pro Firmware Security Vulnerabilities
An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under certain conditions, a TLBI+DSB might fail to ensure the completion of memory accesses related to SME.
CVSS Score
3.6
EPSS Score
0.0
Published
2026-03-02
An unprivileged context can trigger a data
memory-dependent prefetch engine to fetch the contents of a privileged location
and consume those contents as an address that is also dereferenced.
CVSS Score
5.1
EPSS Score
0.001
Published
2025-01-28