VDB

ALPINE-CVE-2024-5660

ALPINE-CVE-2024-5660 PUBLISHED CVSS 9.800000190734863 CRITICAL

Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.

Risk Scores

CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Alpine:v3.18arm-trusted-firmware2.5-r2, 2.3-r0, 2.5-r1
Alpine:v3.20arm-trusted-firmware2.7.0-r1, 2.7.0-r2, 2.7.0-r3
Alpine:v3.19arm-trusted-firmware0, 2.1-r0, 2.3-r0
Alpine:v3.21arm-trusted-firmware2.8.25-r0, 2.8.6-r0, 2.8.8-r0

Timeline

  • Dec 10, 2024 CVE Published
  • Apr 30, 2026 Distribution Patch
  • Jun 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›