Description

In OpenXiangShan NEMU prior to 55295c4, when running with RVH (Hypervisor extension) enabled, a VS-mode guest write to the supervisor interrupt-enable CSR (sie) may be handled incorrectly and can influence machine-level interrupt enable state (mie). This breaks privilege/virtualization isolation and can lead to denial of service or privilege-boundary violation in environments relying on NEMU for correct interrupt virtualization.

INFO

Published Date :

2026-04-20T00:00:00.000Z

Last Modified :

2026-04-21T19:50:49.314Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2026-29646 vulnerability.

Vendors Products
Openxiangshan
  • Nemu
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-29646.

URL Resource
https://docs.riscv.org/reference/isa/priv/hypervisor.html cve-icon cve-icon
https://docs.riscv.org/reference/isa/priv/machine.html cve-icon cve-icon
https://docs.riscv.org/reference/isa/priv/supervisor.html cve-icon cve-icon
https://docs.riscv.org/reference/isa/unpriv/zicsr.html cve-icon cve-icon
https://github.com/OpenXiangShan/NEMU/issues/951 cve-icon cve-icon
https://github.com/OpenXiangShan/NEMU/pull/938 cve-icon cve-icon
https://github.com/OpenXiangShan/NEMU/pull/938/commits/55295c46580456d8d5a9d5736e1fda924b8825ab cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact