CVE-2026-29648

Name of the Vulnerable Software and Affected Versions OpenXiangShan NEMU (affected versions not specified)

Description When Smstateen is enabled, clearing mstateen0.ENVCFG fails to correctly restrict access to henvcfg and senvcfg. This allows less-privileged code to read or write these Control and Status Registers (CSRs) without triggering the required exception, which may lead to the bypass of state-enable based isolation controls in multi-privilege or virtualized environments.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.