CVE-2026-29649 - Vulnerability Analysis

Overview

NEMU contains a broken access control vulnerability caused by incorrect masking and updating of henvcfg[7:4] based on menvcfg[7:4], letting attackers cause denial of service via virtualization misconfiguration, exploit requires machine-mode write access.

Severity & Score

Impact

Attackers with machine-mode write access can cause denial of service by misconfiguring virtualization environment leading to unexpected traps.

Mitigation

Update to the latest version with corrected CSR handling.

References

• https://github.com/OpenXiangShan/NEMU/issues/681
• https://github.com/OpenXiangShan/NEMU/pull/689
• https://docs.riscv.org/reference/isa/priv/hypervisor.html
• https://docs.riscv.org/reference/isa/priv/machine.html

Related Resources

• Vulnerability Intelligence Dashboard
• Credential Scanner