CVE-2022-48251

CVSS V2 None CVSS V3 None
Description
** DISPUTED ** The AES instructions on the ARMv8 platform do not have an algorithm that is "intrinsically resistant" to side-channel attacks. NOTE: the vendor reportedly offers the position "while power side channel attacks ... are possible, they are not directly caused by or related to the Arm architecture."
Overview
  • CVE ID
  • CVE-2022-48251
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-10T07:15:09
  • Last Modified Date
  • 2023-01-20T07:54:22
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:arm:cortex-a53_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a53:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a55_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a55:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a75_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a75:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a76_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a76:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a76ae_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a76ae:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a77_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a77:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:arm:cortex-a78_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arm:cortex-a78:-:*:*:*:*:*:*:* 0 OR
History
Created Old Value New Value Data Type Notes
2023-01-10 07:18:31 Added to TrackCVE
2023-01-10 14:18:52 2023-01-10T13:36:03 CVE Modified Date updated
2023-01-10 14:18:52 Received Awaiting Analysis Vulnerability Status updated
2023-01-13 11:15:13 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-13 15:15:15 Undergoing Analysis Awaiting Analysis Vulnerability Status updated
2023-01-18 18:18:32 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-20 08:14:02 2023-01-20T07:54:22 CVE Modified Date updated
2023-01-20 08:14:02 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-20 08:14:02 Weakness Enumeration new
2023-01-20 08:14:03 CPE Information updated