CVE-2025-10263
9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Summary
Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925, Cortex-X4, Cortex-X3, Cortex-X2, Cortex-X1 & X1C, Cortex-A710, Cortex-A78, A78AE & A78C, Cortex-A77, Cortex-A76 & A76A may allow writes to resources owned by a higher exception level.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Arm | C1-Ultra | 0 | affected |
| Arm | C1-Premium | 0 | affected |
| Arm | Neoverse V3 | 0 | affected |
| Arm | Neoverse V3AE | 0 | affected |
| Arm | Neoverse V1 | 0 | affected |
| Arm | Neoverse N2 | 0 | affected |
| Arm | Neoverse N1 | 0 | affected |
| Arm | Cortex-X925 | 0 | affected |
| Arm | Cortex-X4 | 0 | affected |
| Arm | Cortex-X3 | 0 | affected |
| Arm | Cortex-X2 | 0 | affected |
| Arm | Cortex-X1 | 0 | affected |
| Arm | Cortex-X1C | 0 | affected |
| Arm | Cortex-A710 | 0 | affected |
| Arm | Cortex-A78 | 0 | affected |
| Arm | Cortex-A78AE | 0 | affected |
| Arm | Cortex-A78C | 0 | affected |
| Arm | Cortex-A77 | 0 | affected |
| Arm | Cortex-A76 | 0 | affected |
| Arm | Cortex-A76AE | 0 | affected |
Weaknesses
- CWE-362: CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
ADP Enrichment
CVE Program Container
Additional References
- http://xenbits.xen.org/xsa/advisory-493.html
- http://www.openwall.com/lists/oss-security/2026/06/09/13
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: total
kernel: Arm Processors: Privilege escalation or information disclosure via writes to higher exception level resources
Additional References
- https://access.redhat.com/security/cve/CVE-2025-10263
- https://bugzilla.redhat.com/show_bug.cgi?id=2486958
- https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-10263.json
- https://access.redhat.com/errata/RHSA-2026:34911
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.