CVE-2023-5370

Summary

On CPU 0 the check for the SMCCC workaround is called before SMCCC support has been initialized. This resulted in no speculative execution workarounds being installed on CPU 0.

Affected Software

VendorProductVersion RangeStatus
FreeBSDFreeBSD13.2-RELEASE < p4affected

Weaknesses

  • CWE-665: CWE-665 Improper Initialization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References