CVE-2025-10263

high

Description

Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925, Cortex-X4, Cortex-X3, Cortex-X2, Cortex-X1 & X1C, Cortex-A710, Cortex-A78, A78AE & A78C, Cortex-A77, Cortex-A76 & A76A may allow writes to resources owned by a higher exception level.

References

https://thehackernews.com/2026/06/microsoft-patches-record-206-flaws.html

https://docs.cloud.google.com/support/bulletins/index#gcp-2026-036

https://www.tenable.com/blog/microsofts-june-2026-patch-tuesday-addresses-198-cves-cve-2026-49160-cve-2026-50507

https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-10263.json

https://developer.arm.com/documentation/112137

https://bugzilla.redhat.com/show_bug.cgi?id=2486958

https://access.redhat.com/security/cve/CVE-2025-10263

http://xenbits.xen.org/xsa/advisory-493.html

http://www.openwall.com/lists/oss-security/2026/06/09/13

Details

Source: Mitre, NVD

Published: 2026-06-09

Updated: 2026-06-30

Risk Information

CVSS v2

Base Score: 9.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:N

Severity: High

CVSS v3

Base Score: 8.4

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00017