In certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB invalidation when a TLBI is issued to the PE, either by the same PE or another PE in the shareability domain. In this case, the PE may retain stale TLB entries which should have been invalidated by the TLBI.
References
| Link | Resource |
|---|---|
| https://developer.arm.com/documentation/111546 | Vendor Advisory |
| https://graph.volerion.com/view?ID=CVE-2025-0647 | Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
History
26 Jan 2026, 19:40
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://developer.arm.com/documentation/111546 - Vendor Advisory | |
| References | () https://graph.volerion.com/view?ID=CVE-2025-0647 - Third Party Advisory | |
| CPE | cpe:2.3:h:arm:cortex-x3:-:*:*:*:*:*:*:* cpe:2.3:o:arm:c1-premium_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-v2:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-v3:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x3_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-a710:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x4_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-v2_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-a710_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x4:-:*:*:*:*:*:*:* cpe:2.3:h:arm:c1-ultra:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x925_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x2_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x2:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x925:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-n2:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-v3ae:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-v3ae_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-n2_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-v3_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:c1-premium:-:*:*:*:*:*:*:* cpe:2.3:o:arm:c1-ultra_firmware:-:*:*:*:*:*:*:* |
|
| First Time |
Arm cortex-a710
Arm neoverse-v2 Arm neoverse-v3 Arm cortex-x2 Arm neoverse-n2 Firmware Arm cortex-x4 Firmware Arm cortex-x3 Arm cortex-x2 Firmware Arm c1-ultra Firmware Arm cortex-x3 Firmware Arm c1-premium Arm neoverse-v3 Firmware Arm neoverse-v3ae Arm cortex-a710 Firmware Arm c1-ultra Arm cortex-x925 Firmware Arm Arm cortex-x4 Arm neoverse-v3ae Firmware Arm c1-premium Firmware Arm neoverse-n2 Arm neoverse-v2 Firmware Arm cortex-x925 |
20 Jan 2026, 16:16
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.9 |
| References |
|
15 Jan 2026, 21:16
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
14 Jan 2026, 11:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-01-14 11:15
Updated : 2026-01-26 19:40
NVD link : CVE-2025-0647
Mitre link : CVE-2025-0647
CVE.ORG link : CVE-2025-0647
JSON object : View
Products Affected
arm
- cortex-a710
- c1-ultra
- cortex-x4_firmware
- neoverse-v3ae_firmware
- c1-ultra_firmware
- neoverse-n2
- cortex-a710_firmware
- neoverse-n2_firmware
- cortex-x3_firmware
- c1-premium
- neoverse-v3
- cortex-x2_firmware
- cortex-x4
- cortex-x3
- neoverse-v2_firmware
- neoverse-v3_firmware
- cortex-x925
- cortex-x925_firmware
- cortex-x2
- neoverse-v3ae
- neoverse-v2
- c1-premium_firmware
CWE
CWE-226
Sensitive Information in Resource Not Removed Before Reuse