CVE-2023-5370

CVE-2023-5370: arm64 boot CPUs may lack speculative execution protections

Vendor Freebsd
Product FreeBSD
Weakness CWE-665
Published October 4, 2023
Last update February 13, 2025

CVSS base score

What the vulnerability does

01Description

On CPU 0 the check for the SMCCC workaround is called before SMCCC support has been initialized. This resulted in no speculative execution workarounds being installed on CPU 0.

Key dates

02Disclosure timeline

October 4, 2023 CVE published
February 13, 2025 Record updated