CVE-2024-10929

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-10929
In certain circumstances, an issue in Arm Cortex-A57, Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75 may allow an adversary to gain a weak form of control over the victim's branch history.

5.1 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 2.5

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://developer.arm.com/Arm%20Security%20Center/Spectre-BSE Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:arm:cortex-a75_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a75:-:*:*:*:*:*:*:*
History

18 Dec 2025, 15:47

Type Values Removed Values Added
References () https://developer.arm.com/Arm%20Security%20Center/Spectre-BSE - () https://developer.arm.com/Arm%20Security%20Center/Spectre-BSE - Vendor Advisory
CWE CWE-203
First Time Arm cortex-a73
Arm
Arm cortex-a57 Firmware
Arm cortex-a72
Arm cortex-a72 Firmware
Arm cortex-a75 Firmware
Arm cortex-a57
Arm cortex-a73 Firmware
Arm cortex-a75
CPE cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a75:-:*:*:*:*:*:*:*
cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:arm:cortex-a75_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*

22 Jul 2025, 11:15

Type Values Removed Values Added
Summary (en) In certain circumstances, an issue in Arm Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75 may allow an adversary to gain a weak form of control over the victim's branch history. (en) In certain circumstances, an issue in Arm Cortex-A57, Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75 may allow an adversary to gain a weak form of control over the victim's branch history.

03 Feb 2025, 15:15

Type Values Removed Values Added
Summary
  • (es) En determinadas circunstancias, un problema en Arm Cortex-A72 (revisiones anteriores a r1p0), Cortex-A73 y Cortex-A75 puede permitir que un adversario obtenga una forma débil de control sobre el historial de la rama de la víctima.
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.1

22 Jan 2025, 16:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-01-22 16:15

Updated : 2025-12-18 15:47

NVD link : CVE-2024-10929

Mitre link : CVE-2024-10929

CVE.ORG link : CVE-2024-10929

JSON object : View

Products Affected

arm

  • cortex-a75_firmware
  • cortex-a57_firmware
  • cortex-a72
  • cortex-a73
  • cortex-a75
  • cortex-a72_firmware
  • cortex-a73_firmware
  • cortex-a57
CWE
CWE-203

Observable Discrepancy