CNNVD-202512-1950 Information

CNNVD ID

CNNVD-202512-1950

Related CVE

CVE-2025-63094

• CNNVD Published: 2025-12-10

Description (Chinese)

XiangShan是中国XiangShan开源的一个开源高性能RISC-V处理器项目。 XiangShan存在安全漏洞，该漏洞源于推测执行和间接分支预测，可能导致侧信道分析攻击。

Description (English)

XiangShan is an open source high-performance RISC-V processor project in XiangShan, China. There is a security loophole in XiangShan, which stems from speculation on execution and indirect branch predictions, which could lead to a side channel analysis attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

XiangShan

Published

2025-12-10

Last Modified

2026-02-24

References

https://github.com/necst/aca25-xiangshan-spectre https://github.com/necst/aca25-xiangshan-spectre/blob/main/README.md https://access.redhat.com/security/cve/cve-2025-63094