I
n certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB invalidation when a TLBI is issued to the PE, either by the same PE or another PE in the shareability domain. In this case, the PE may retain stale TLB entries which should have been invalidated by the TLBI.
References
| Link | Resource |
|---|---|
| https://developer.arm.com/documentation/111546 | Vendor Advisory |
| https://graph.volerion.com/view?ID=CVE-2025-0647 | Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
History
26 Jan 2026, 19:40
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:arm:neoverse-v3_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x4:-:*:*:*:*:*:*:* cpe:2.3:h:arm:c1-ultra:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-v2:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x925:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x925_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:c1-ultra_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-v3ae_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-n2:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x2:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-a710_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-v3ae:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-x3:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-v2_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:arm:neoverse-v3:-:*:*:*:*:*:*:* cpe:2.3:h:arm:c1-premium:-:*:*:*:*:*:*:* cpe:2.3:h:arm:cortex-a710:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x2_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:c1-premium_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x3_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:neoverse-n2_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:arm:cortex-x4_firmware:-:*:*:*:*:*:*:* |
|
| First Time |
Arm neoverse-v3ae Firmware
Arm c1-premium Firmware Arm neoverse-v2 Arm c1-premium Arm c1-ultra Firmware Arm cortex-x925 Firmware Arm cortex-x2 Firmware Arm cortex-x925 Arm Arm neoverse-v3 Arm cortex-x4 Arm cortex-a710 Arm cortex-x4 Firmware Arm c1-ultra Arm neoverse-n2 Arm neoverse-v3 Firmware Arm cortex-a710 Firmware Arm neoverse-v3ae Arm cortex-x2 Arm neoverse-v2 Firmware Arm neoverse-n2 Firmware Arm cortex-x3 Arm cortex-x3 Firmware |
|
| References | () https://developer.arm.com/documentation/111546 - Vendor Advisory | |
| References | () https://graph.volerion.com/view?ID=CVE-2025-0647 - Third Party Advisory |
20 Jan 2026, 16:16
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.9 |
15 Jan 2026, 21:16
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
14 Jan 2026, 11:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-01-14 11:15
Updated : 2026-01-26 19:40
NVD link : CVE-2025-0647
Mitre link : CVE-2025-0647
CVE.ORG link : CVE-2025-0647
JSON object : View
Products Affected
- cortex-a710_firmware
- neoverse-v2
- c1-ultra
- neoverse-n2_firmware
- c1-ultra_firmware
- neoverse-v3ae_firmware
- cortex-x4_firmware
- neoverse-v3
- neoverse-n2
- neoverse-v2_firmware
- neoverse-v3_firmware
- cortex-x925_firmware
- cortex-x3
- cortex-x4
- cortex-x925
- cortex-x3_firmware
- cortex-x2
- cortex-x2_firmware
- neoverse-v3ae
- c1-premium
- cortex-a710
- c1-premium_firmware
CWE
CWE-226
Sensitive Information in Resource Not Removed Before Reuse