Skip to main content

Clang

2 CVEs product

Monthly

CVE-2024-7883 LOW POC Monitor

When using Arm Cortex-M Security Extensions (CMSE), Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Arm Compiler For Embedded Arm Compiler For Embedded Fusa Arm Compiler For Functional Safety Clang
NVD
CVSS 3.1
3.7
EPSS
0.5%
CVE-2014-2893 LOW Monitor

The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary. Rated low severity (CVSS 1.9). No vendor patch available.

Information Disclosure Opensuse Clang
NVD VulDB
CVSS 2.0
1.9
EPSS
0.1%
EPSS 0% CVSS 3.7
LOW POC Monitor

When using Arm Cortex-M Security Extensions (CMSE), Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Arm Compiler For Embedded Arm Compiler For Embedded Fusa +2
NVD
EPSS 0% CVSS 1.9
LOW Monitor

The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary. Rated low severity (CVSS 1.9). No vendor patch available.

Information Disclosure Opensuse Clang
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy