openhwgroup CVE Vulnerabilities & Metrics

Focus on openhwgroup vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About openhwgroup Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with openhwgroup. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total openhwgroup CVEs: 10
Earliest CVE date: 29 Jun 2022, 12:15 UTC
Latest CVE date: 18 Jul 2022, 23:15 UTC

Latest CVE reference: CVE-2022-34641

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical openhwgroup CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 1.0

Max CVSS: 5.0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	8
4.0-6.9	2
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS openhwgroup CVEs

These are the five CVEs with the highest CVSS scores for openhwgroup, sorted by severity first and recency.

CVE-2022-33023 openhwgroup Published on 29 Jun 2022, 12:15 UTC (CVSS: 5.0)
CVA6 commit 909d85a gives incorrect permission to use special multiplication units when the format of instructions is wrong.
CVE-2022-33021 openhwgroup Published on 29 Jun 2022, 12:15 UTC (CVSS: 5.0)
CVA6 commit 909d85a accesses invalid memory when reading the value of MHPMCOUNTER30.
CVE-2022-34641 openhwgroup Published on 18 Jul 2022, 23:15 UTC (CVSS: 0)
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMP violation occurs during address translation.
CVE-2022-34640 openhwgroup Published on 18 Jul 2022, 23:15 UTC (CVSS: 0)
The *tval of ecall/ebreak in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a was discovered to be incorrect.
CVE-2022-34639 openhwgroup Published on 18 Jul 2022, 23:15 UTC (CVSS: 0)
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application.

All CVEs for openhwgroup

CVE-2022-34641 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMP violation occurs during address translation.

CVE-2022-34640 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

The *tval of ecall/ebreak in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a was discovered to be incorrect.

CVE-2022-34639 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application.

CVE-2022-34637 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a implements an incorrect exception type when an illegal virtual address is loaded.

CVE-2022-34636 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

CVE-2022-34635 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

The mstatus.sd field in CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a does not update when the mstatus.fs field is set to Dirty.

CVE-2022-34634 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception.

CVE-2022-34633 openhwgroup vulnerability CVSS: 0 18 Jul 2022, 23:15 UTC

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted sfence.vma instructions rather create an exception.

CVE-2022-33023 openhwgroup vulnerability CVSS: 5.0 29 Jun 2022, 12:15 UTC

CVA6 commit 909d85a gives incorrect permission to use special multiplication units when the format of instructions is wrong.

CVE-2022-33021 openhwgroup vulnerability CVSS: 5.0 29 Jun 2022, 12:15 UTC

CVA6 commit 909d85a accesses invalid memory when reading the value of MHPMCOUNTER30.