Home > Vulnerability Database > CVE-2021-40506

Mend.io Vulnerability Database

CVE-2021-40506

Date: April 18, 2023

An issue was discovered in the ALU unit of the OR1200 (aka OpenRISC 1200) processor 2011-09-10 through 2015-11-11. The overflow flag is not being updated for the msb and mac instructions, which results in an incorrect value in the overflow flag. Any software that relies on this flag may experience corruption in execution.

Language: VALA

Severity Score

9.8

Related Resources (4)

Url: https://seth.engr.tamu.edu/software-releases/thehuzz/

Url: https://nvd.nist.gov/vuln/detail/CVE-2021-40506

Url: https://github.com/openrisc/or1200/commit/2c0765d7ba12813df273cd693a99c4e744f0fbd5

Url: https://www.mend.io/vulnerability-database/CVE-2021-40506

Severity Score

9.8

Weakness Type (CWE)

Authentication Issues

CWE-287

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2021-40506

Date: April 18, 2023

Language: VALA

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?