Arm is aware of a potential software security issue in code that uses Cortex-M Security Extensions (CMSE) and has been compiled with tools that implement Arm v8-M Security Extensions Requirements on Development Tools before version 1.4. This issue potentially allows an attacker who can pass out-of-range values to code executing in Secure state to cause incorrect operation in Secure state. Refer: https://developer.arm.com/Arm%20Security%20Center/Cortex-M%20Security%20Extensions