CVE-2026-29649

Published: Apr 20, 2026

Modified: Apr 21, 2026

PUBLISHED

Description

NEMU contains an implementation flaw in its RISC-V Hypervisor CSR handling where henvcfg[7:4] (CBIE/CBCFE/CBZE-related fields) is incorrectly masked/updated based on menvcfg[7:4], so a machine-mode write to menvcfg can implicitly modify the hypervisor's environment configuration. This can lead to incorrect enforcement of virtualization configuration and may cause unexpected traps or denial of service when executing cache-block management instructions in virtualized contexts (V=1).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/OpenXiangShan/NEMU/issues/681

https://github.com/OpenXiangShan/NEMU/pull/689

https://docs.riscv.org/reference/isa/priv/machine.html

https://docs.riscv.org/reference/isa/priv/hypervisor.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-29649

Description

Affected Products

References