CVE-2017-5927

CVE Database · CVE-2017-5927

CVE-2017-5927

· N/AModified

CVSS v3.1

N/A

EPSS

1.58%

Published

Feb 27, 2017

Modified

May 12, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Page table walks conducted by the MMU during virtual to physical address translation leave a trace in the last level cache of modern ARM processors. By performing a side-channel attack on the MMU operations, it is possible to leak data and code pointers from JavaScript, breaking ASLR.

Weaknesses (CWE)

CWE-200

Affected Products (20)

allwinner · a64vulnerable

amd · athlon_ii_640_x4vulnerable

amd · e-350vulnerable

amd · fx-8120_8-corevulnerable

amd · fx-8320_8-corevulnerable

amd · fx-8350_8-corevulnerable

amd · phenom_9550_4-corevulnerable

intel · atom_c2750vulnerable

intel · celeron_n2840vulnerable