CVE-2021-41612

Published: Apr 18, 2023Modified: Feb 6, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

An issue was discovered in the ALU unit of the OpenRISC mor1kx processor. The carry flag is not being updated correctly for the subtract instruction, which results in an incorrect value of the carry flag. Any software that relies on this flag may experience corruption in execution.

Affected (1)

Products: Openrisc: Mor1kx Firmware

1 product

Mor1kx Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Openrisc Mor1kx Firmware	Before 5.1

Running on/with	Platform Versions
Openrisc Mor1kx	All versions

References (4)

https://github.com/openrisc/mor1kx/issues/139

Source: cve@mitre.org

VDB Entry

https://seth.engr.tamu.edu/software-releases/thehuzz/

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/openrisc/mor1kx/issues/139

Source: af854a3a-2127-422b-91ae-364da2661108

VDB Entry

https://seth.engr.tamu.edu/software-releases/thehuzz/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.