CNNVD-202508-2100 Information

CNNVD ID

CNNVD-202508-2100

Related CVE

CVE-2025-50897

• CNNVD Published: 2025-08-19

Description (Chinese)

riscv-boom SonicBOOM是BOOM: The Berkeley Out-of-Order RISC-V Processor开源的一个SonicBOOM：伯克利混乱机器。 riscv-boom SonicBOOM 1.2版本存在安全漏洞，该漏洞源于内存访问控制不当，可能导致拒绝服务。

Description (English)

riscv-boom SonicBOM is a SonicBOM: Berkeley Chaos Machine. There is a security loophole in version 1.2 of the riscv-boom SonicBOM, which stems from inadequate memory access controls that may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

BOOM: The Berkeley Out-of-Order RISC-V Processor

Published

2025-08-19

Last Modified

2026-02-24

References

https://github.com/LuLuji04/POC-Boomv1.2 https://github.com/riscv-software-src/riscv-isa-sim https://github.com/riscv-boom/riscv-boom https://nvd.nist.gov/vuln/detail/CVE-2025-50897

Patch

https://github.com/riscv-boom/riscv-boom/releases