CVE-2025-8774 – Riscv-boom SonicBOOM L1 Data Cache Handler Timing Discrepancy Vulnerability

August 9, 2025

CVE ID : CVE-2025-8774

Published : Aug. 9, 2025, 9:15 p.m. | 2 hours, 25 minutes ago

Description : A vulnerability has been found in riscv-boom SonicBOOM up to 2.2.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component L1 Data Cache Handler. The manipulation leads to observable timing discrepancy. Local access is required to approach this attack. The complexity of an attack is rather high. The exploitation appears to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 2.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-8775 – Qiyuesuo Electronic Signature Platform Unrestricted File Upload Vulnerability

Next Article CVE-2025-8773 – Dinstar Monitoring Platform SQL Injection Vulnerability

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-8774 – Riscv-boom SonicBOOM L1 Data Cache Handler Timing Discrepancy Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Transformers Gain Robust Multidimensional Positional Understanding: University of Manchester Researchers Introduce a Unified Lie Algebra Framework for N-Dimensional Rotary Position Embedding (RoPE)

Windows 11 is planning a huge redesign of its Start Menu

CVE-2025-7524 – “TOTOLINK T6 HTTP POST Request Handler Command Injection Vulnerability”

CVE-2025-6806 – Marvell QConvergeConsole Directory Traversal File Write Vulnerability

How to Turn Ubuntu 24.04 into a KVM Hypervisor – Quick Setup with Web Management

How to Create Reusable Canva Templates for Your Brand

Radon – computes various metrics from Python code

YouTube’s Secret Algorithm Explained by Digital Marketing Legend Srinidhi Ranganathan

CVE-2025-8774 – Riscv-boom SonicBOOM L1 Data Cache Handler Timing Discrepancy Vulnerability

Related Posts