Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Arm Ltd — Vulnerabilities & Security Advisories 41

Browse all 41 CVE security advisories affecting Arm Ltd. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Arm Ltd designs processor architectures and intellectual property licenses widely used in mobile devices, IoT, and automotive systems. Its core business involves providing the foundational hardware logic that powers billions of global devices rather than manufacturing end-user products. Historically, vulnerabilities in Arm components have frequently involved memory corruption issues, such as buffer overflows and use-after-free errors, which often lead to remote code execution or privilege escalation. These flaws typically arise in low-level system software, hypervisors, or cryptographic libraries integrated with Arm cores. While major public incidents are less common than in consumer software due to the embedded nature of the technology, security researchers regularly identify critical flaws in Arm’s cryptographic implementations and kernel interfaces. The current record of 41 CVEs reflects ongoing efforts to secure these foundational components against sophisticated attacks targeting the hardware-software boundary.

Top products by Arm Ltd: Bifrost GPU Kernel Driver Valhall GPU Kernel Driver Midgard GPU Kernel Driver Arm Compiler 5 (AC5), Arm Compiler for Embedded 6 (AC6), Fast Models (FM), Arm Compiler for Embedded FuSA (ACEF), Arm Development Studio (ADS), Arm Forge (AF), Arm Mobile Studio (AMS), DS-5 Development Studio, Fast Models (FM), GNU Toolchain (GT), Keil MDK (KMDK), Mbed Studio (MS) Bifrost GPU Userspace Driver Arm GNU Toolchain Midgard GPU Userspace Driver Arm 5th Gen GPU Architecture Kernel Driver Valhall GPU Firmware Arm Compiler for Embedded Valhall GPU Userspace Driver
CVE IDTitleCVSSSeverityPublished
CVE-2025-6349 Mali GPU Kernel Driver allows improper GPU memory processing operations — Valhall GPU Kernel DriverCWE-416 7.8AIHighAI2025-12-01
CVE-2025-8045 Mali GPU Kernel Driver allows improper GPU processing operations — Valhall GPU Kernel DriverCWE-416 7.8AIHighAI2025-12-01
CVE-2025-2879 Mali GPU Kernel Driver allows improper GPU processing operations — Valhall GPU Kernel DriverCWE-200 5.5AIMediumAI2025-12-01
CVE-2025-3212 Mali GPU Kernel Driver allows access to already freed memory — Bifrost GPU Kernel DriverCWE-416 7.8AIHighAI2025-09-08
CVE-2025-0932 Mali GPU Userspace Driver allows access to already freed memory — Bifrost GPU Userspace DriverCWE-416 8.8AIHighAI2025-08-04
CVE-2025-1246 Mali GPU Userspace Driver allows an Out-of-Bounds access — Bifrost GPU Userspace DriverCWE-119 8.8AIHighAI2025-06-02
CVE-2025-0819 Mali GPU Kernel Driver allows access to already freed memory — Bifrost GPU Kernel DriverCWE-416 7.8AIHighAI2025-06-02
CVE-2025-0073 Mali GPU Kernel Driver allows improper GPU memory processing operations — Valhall GPU Kernel DriverCWE-416 7.8AIHighAI2025-06-02
CVE-2025-0427 Mali GPU Kernel Driver allows access to already freed memory — Bifrost GPU Kernel DriverCWE-416 7.8AIHighAI2025-05-02
CVE-2025-0072 Mali GPU Kernel Driver allows improper GPU memory processing operations — Valhall GPU Kernel DriverCWE-416 7.8AIHighAI2025-05-02
CVE-2025-0050 Mali GPU Userspace Driver allows an Out-of-Bounds access — Valhall GPU Userspace DriverCWE-119 5.4AIMediumAI2025-04-07
CVE-2025-0015 Mali GPU Kernel Driver allows improper GPU processing operations — Valhall GPU Kernel DriverCWE-416 7.8 -2025-02-03
CVE-2024-6790 Mali GPU Kernel Driver can cause the whole system to become unresponsive — Bifrost GPU Kernel DriverCWE-835 6.5 -2025-02-03
CVE-2024-7883 CMSE secure state may leak from stack to floating-point registers — Arm Compiler for EmbeddedCWE-226 3.7 Low2024-10-31
CVE-2024-3655 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 7.8AIHighAI2024-09-03
CVE-2024-4607 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 7.8AIHighAI2024-08-05
CVE-2024-2937 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 7.8AIHighAI2024-08-05
CVE-2024-0153 Mali GPU Firmware allows improper GPU processing operations — Valhall GPU FirmwareCWE-119 6.5AIMediumAI2024-07-01
CVE-2024-4610 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 7.8 -2024-06-07
CVE-2023-6363 Mali GPU Kernel Driver allows improper GPU processing operations — Valhall GPU Kernel DriverCWE-416 7.8AIHighAI2024-05-03
CVE-2024-1067 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 5.5AIMediumAI2024-05-03
CVE-2024-1395 Mali GPU Kernel Driver allows improper GPU memory processing operations — Arm 5th Gen GPU Architecture Kernel DriverCWE-416 7.8AIHighAI2024-05-03
CVE-2024-1065 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 7.8 -2024-04-19
CVE-2024-0671 Mali GPU Kernel Driver allows improper GPU memory processing operations — Midgard GPU Kernel DriverCWE-416 7.8 -2024-04-19
CVE-2023-6241 Mali GPU Kernel Driver allows improper GPU memory processing operations — Midgard GPU Kernel DriverCWE-416 7.0AIHighAI2024-03-04
CVE-2023-6143 Mali GPU Kernel Driver allows improper GPU memory processing operations — Midgard GPU Kernel DriverCWE-416 7.0AIHighAI2024-03-04
CVE-2023-5249 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-416 7.0 -2024-02-05
CVE-2023-5643 Mali GPU Kernel Driver allows improper GPU memory processing operations — Bifrost GPU Kernel DriverCWE-787 7.8 -2024-02-05
CVE-2023-5091 Mali GPU Kernel Driver allows improper GPU processing operations — Valhall GPU Kernel DriverCWE-416 7.8AIHighAI2024-01-08
CVE-2023-32804 Mali GPU Userspace Driver can make an Out-of-Bounds access — Midgard GPU Userspace DriverCWE-787 7.8AIHighAI2023-12-04

This page lists every published CVE security advisory associated with Arm Ltd. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.