CNNVD-202509-4467 Information

CNNVD ID

CNNVD-202509-4467

Related CVE

CVE-2025-56301

• CNNVD Published: 2025-09-30

Description (Chinese)

Rocket Chip Generator是CHIPS Alliance开源的一个开源的 Sysem-on-Chip 设计生成器。 Rocket Chip Generator存在安全漏洞，该漏洞源于异常处理和MRET返回机制存在缺陷，可能导致控制状态寄存器冲突更新。

Description (English)

Rocket Chip Generator is an open-source Sysem-on-Chip design generator for CHIPS Alliance. Rocket Chip Generator has a security loophole, which stems from irregularities and deficiencies in the MRET return mechanism, which could lead to a control status register being updated.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

CHIPS Alliance

Published

2025-09-30

Last Modified

2026-02-24

References

https://github.com/chipsalliance/rocket-chip https://github.com/chipsalliance/rocket-chip/blob/f517abbf41abb65cea37421d3559f9739efd00a9/src/main/scala/rocket/CSR.scala https://github.com/chipsalliance/rocket-chip/blob/master/src/main/scala/rocket/CSR.scala https://github.com/heyfenny/Vulnerability_disclosure/blob/main/RISCV/Rocket-chip/CVE-2025-56301/details.md https://lf-riscv.atlassian.net/wiki/spaces/HOME/pages/16154769/RISC-V+Technical+Specifications#ISA-Specifications