CVE Tools

arm

OSS LibrariesGBoss-project

85

Cumulative CVEs

21

Monthly snapshots

#56

Peak rank

Top products

mbed tls4 development studio1 arm development studio1

Latest CVEs

The 15 most recently published vulnerabilities affecting arm.

CVE-2025-10263Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925, Cortex-X4, Cortex-X3, Cortex-X2, Cortex-X1 & X1C, Cortex-A710, Cortex-A78, A78AE & A78...9.1Jun 9, 2026
CVE-2026-34877An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, Mbed TLS 4.0.0. Insufficient protection of serialized SSL context or session structures allows an attacker who can modify the s...9.8Apr 2, 2026
CVE-2026-34872An issue was discovered in Mbed TLS 3.5.x and 3.6.x through 3.6.5 and TF-PSA-Crypto 1.0. There is a lack of contributory behavior in FFDH due to improper input validation. Using finite-field Diffie...9.1Apr 1, 2026
CVE-2026-34871An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 and TF-PSA-Crypto before 1.1.0. There is a Predictable Seed in a Pseudo-Random Number Generator (PRNG).6.7Apr 1, 2026
CVE-2026-25835Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator (PRNG).7.7Apr 1, 2026
CVE-2025-66442In Mbed TLS through 4.0.0, there is a compiler-induced timing side channel (in RSA and CBC/ECB decryption) that only occurs with LLVM's select-optimize feature. TF-PSA-Crypto through 1.0.0 is also ...5.1Apr 1, 2026
CVE-2026-0995An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under certain conditions, a TLBI+DSB might fail to ensure the completion of memory accesses related to SME.3.6Mar 2, 2026
CVE-2025-0647In certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB invalidation when a TLBI is issued to the PE, either by the same PE or another PE in the shareabi...7.9Jan 14, 2026
CVE-2025-6349Mali GPU Kernel Driver allows improper GPU memory processing operations5.1Dec 1, 2025
CVE-2025-8045Mali GPU Kernel Driver allows improper GPU processing operations4.0Dec 1, 2025
CVE-2025-2879Mali GPU Kernel Driver allows improper GPU processing operations5.1Dec 1, 2025
CVE-2025-59438Mbed TLS through 3.6.4 has an Observable Timing Discrepancy.5.3Oct 21, 2025
CVE-2025-54764Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.6.2Oct 20, 2025
CVE-2025-3212Mali GPU Kernel Driver allows access to already freed memory5.3Sep 8, 2025
CVE-2025-0932Mali GPU Userspace Driver allows access to already freed memory4.3Aug 4, 2025