A vulnerability exists in riscv-boom SonicBOOM 1.2 (BOOMv1.2) processor implementation, where valid virtual-to-physical address translations configured with write permissions (PTE_W) in SV39 mode may incorrectly trigger a Store/AMO access fault during store instructions (sd). This occurs despite the presence of proper page table entries and valid memory access modes. The fault is reproducible when transitioning into virtual memory and attempting store operations in mapped kernel memory, indicating a potential flaw in the MMU, PMP, or memory access enforcement logic. This may cause unexpected kernel panics or denial of service in systems using BOOMv1.2.
                
            Metrics
Affected Vendors & Products
References
        History
                    Fri, 17 Oct 2025 17:00:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Boom-core Boom-core boomv | |
| CPEs | cpe:2.3:a:boom-core:boomv:1.2:*:*:*:*:*:*:* | |
| Vendors & Products | Boom-core Boom-core boomv | 
Tue, 19 Aug 2025 19:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Weaknesses | CWE-284 CWE-434 CWE-693 | |
| Metrics | cvssV3_1 
 
 | 
Tue, 19 Aug 2025 15:00:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | A vulnerability exists in riscv-boom SonicBOOM 1.2 (BOOMv1.2) processor implementation, where valid virtual-to-physical address translations configured with write permissions (PTE_W) in SV39 mode may incorrectly trigger a Store/AMO access fault during store instructions (sd). This occurs despite the presence of proper page table entries and valid memory access modes. The fault is reproducible when transitioning into virtual memory and attempting store operations in mapped kernel memory, indicating a potential flaw in the MMU, PMP, or memory access enforcement logic. This may cause unexpected kernel panics or denial of service in systems using BOOMv1.2. | |
| References |  | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: mitre
Published: 2025-08-19T00:00:00.000Z
Updated: 2025-08-19T18:20:07.257Z
Reserved: 2025-06-16T00:00:00.000Z
Link: CVE-2025-50897
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-08-19T18:18:35.367Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2025-08-19T15:15:28.310
Modified: 2025-10-17T16:55:16.997
Link: CVE-2025-50897
 Redhat
                        Redhat
                    No data.