VDB
ALPINE-CVE-2024-5660
ALPINE-CVE-2024-5660
PUBLISHED
CVSS 9.800000190734863 CRITICAL
Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.18 | arm-trusted-firmware | 2.5-r2, 2.3-r0, 2.5-r1 |
| Alpine:v3.20 | arm-trusted-firmware | 2.7.0-r1, 2.7.0-r2, 2.7.0-r3 |
| Alpine:v3.19 | arm-trusted-firmware | 0, 2.1-r0, 2.3-r0 |
| Alpine:v3.21 | arm-trusted-firmware | 2.8.25-r0, 2.8.6-r0, 2.8.8-r0 |
Timeline
- Dec 10, 2024 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 15, 2026 CVE Updated