openhwgroup 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
過去の問題は主に バッファオーバーフロー などに関し、一部は vendor impact memory corruption を招き、vendor surface production workloads and vendor surface software deployment 関連の場面に影響します。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2022-34641 | CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMP violation occurs during address translation. | [email protected] | 5.5 | 0.28% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34640 | The *tval of ecall/ebreak in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a was discovered to be incorrect. | [email protected] | 5.5 | 0.21% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34639 | CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application. | [email protected] | 5.5 | 0.24% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34637 | CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a implements an incorrect exception type when an illegal virtual address is loaded. | [email protected] | 5.5 | 0.21% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34636 | CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMA violation occurs during address translation. | [email protected] | 5.5 | 0.23% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34635 | The mstatus.sd field in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a does not update when the mstatus.fs field is set to Dirty. | [email protected] | 9.8 | 0.77% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34634 | CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception. | [email protected] | 5.5 | 0.23% | 2022-07-18 | 2026-06-17 |
| CVE-2022-34633 | CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted sfence.vma instructions rather create an exception. | [email protected] | 5.5 | 0.23% | 2022-07-18 | 2026-06-17 |
| CVE-2022-33023 | CVA6 commit 909d85a gives incorrect permission to use special multiplication units when the format of instructions is wrong. | [email protected] | 7.5 | 0.59% | 2022-06-29 | 2026-06-17 |
| CVE-2022-33021 | CVA6 commit 909d85a accesses invalid memory when reading the value of MHPMCOUNTER30. | [email protected] | 7.5 | 0.93% | 2022-06-29 | 2026-06-17 |