"value":"When using Arm Cortex-M Security Extensions (CMSE), Secure stack \ncontents can be leaked to Non-secure state via floating-point registers \nwhen a Secure to Non-secure function call is made that returns a \nfloating-point value and when this is the first use of floating-point \nsince entering Secure state. This allows an attacker to read a limited \nquantity of Secure stack contents with an impact on confidentiality. \nThis issue is specific to code generated using LLVM-based compilers."
}
]
},
"problemtype":{
"problemtype_data":[
{
"description":[
{
"lang":"eng",
"value":"CWE-226 Sensitive Information in Resource Not Removed Before Reuse",
"cweId":"CWE-226"
}
]
}
]
},
"affects":{
"vendor":{
"vendor_data":[
{
"vendor_name":"Arm Ltd",
"product":{
"product_data":[
{
"product_name":"Arm Compiler for Embedded",
"version":{
"version_data":[
{
"version_value":"not down converted",
"x_cve_json_5_version_data":{
"versions":[
{
"changes":[
{
"at":"6.23",
"status":"unaffected"
}
],
"lessThanOrEqual":"6.22",
"status":"affected",
"version":"6.6",
"versionType":"semver"
}
],
"defaultStatus":"unaffected"
}
}
]
}
},
{
"product_name":"Arm Compiler for Embedded FuSa 6.16LTS",
"version":{
"version_data":[
{
"version_value":"not down converted",
"x_cve_json_5_version_data":{
"versions":[
{
"status":"affected",
"version":"All versions"
}
],
"defaultStatus":"affected"
}
}
]
}
},
{
"product_name":"Arm Compiler for Embedded FuSa 6.21",
"version":{
"version_data":[
{
"version_value":"not down converted",
"x_cve_json_5_version_data":{
"versions":[
{
"status":"affected",
"version":"All versions"
}
],
"defaultStatus":"affected"
}
}
]
}
},
{
"product_name":"Arm Compiler for Functional Safety 6.6",
