5.6
CVE-2022-23960
- EPSS 0.14%
- Veröffentlicht 13.03.2022 00:15:07
- Zuletzt bearbeitet 21.11.2024 06:49:32
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buffer (BHB) to influence mispredicted branches. Then, cache allocation can allow the attacker to obtain sensitive information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Xen ≫ Xen Version-
Arm ≫ Cortex-a57 Version-
Arm ≫ Cortex-a65 Version-
Arm ≫ Cortex-a65ae Version-
Arm ≫ Cortex-a710 Version-
Arm ≫ Cortex-a72 Version-
Arm ≫ Cortex-a73 Version-
Arm ≫ Cortex-a75 Version-
Arm ≫ Cortex-a76 Version-
Arm ≫ Cortex-a76ae Version-
Arm ≫ Cortex-a77 Version-
Arm ≫ Cortex-a78 Version-
Arm ≫ Cortex-a78ae Version-
Arm ≫ Cortex-r7 Version-
Arm ≫ Cortex-r8 Version-
Arm ≫ Cortex-x1 Version-
Arm ≫ Cortex-x2 Version-
Arm ≫ Neoverse-e1 Version-
Arm ≫ Neoverse-v1 Version-
Arm ≫ Neoverse N1 Version-
Arm ≫ Neoverse N2 Version-
Arm ≫ Cortex-a65 Version-
Arm ≫ Cortex-a65ae Version-
Arm ≫ Cortex-a710 Version-
Arm ≫ Cortex-a72 Version-
Arm ≫ Cortex-a73 Version-
Arm ≫ Cortex-a75 Version-
Arm ≫ Cortex-a76 Version-
Arm ≫ Cortex-a76ae Version-
Arm ≫ Cortex-a77 Version-
Arm ≫ Cortex-a78 Version-
Arm ≫ Cortex-a78ae Version-
Arm ≫ Cortex-r7 Version-
Arm ≫ Cortex-r8 Version-
Arm ≫ Cortex-x1 Version-
Arm ≫ Cortex-x2 Version-
Arm ≫ Neoverse-e1 Version-
Arm ≫ Neoverse-v1 Version-
Arm ≫ Neoverse N1 Version-
Arm ≫ Neoverse N2 Version-
Arm ≫ Cortex-r7 Firmware Version-
Arm ≫ Cortex-r8 Firmware Version-
Arm ≫ Cortex-a57 Firmware Version-
Arm ≫ Cortex-a65 Firmware Version-
Arm ≫ Cortex-a65ae Firmware Version-
Arm ≫ Cortex-a710 Firmware Version-
Arm ≫ Cortex-a72 Firmware Version-
Arm ≫ Cortex-a73 Firmware Version-
Arm ≫ Cortex-a75 Firmware Version-
Arm ≫ Cortex-a76 Firmware Version-
Arm ≫ Cortex-a76ae Firmware Version-
Arm ≫ Cortex-a77 Firmware Version-
Arm ≫ Cortex-a78 Firmware Version-
Arm ≫ Cortex-a78ae Firmware Version-
Arm ≫ Cortex-x1 Firmware Version-
Arm ≫ Cortex-x2 Firmware Version-
Arm ≫ Neoverse-e1 Firmware Version-
Arm ≫ Neoverse-v1 Firmware Version-
Arm ≫ Neoverse N1 Firmware Version-
Arm ≫ Neoverse N2 Firmware Version-
Debian ≫ Debian Linux Version9.0
Debian ≫ Debian Linux Version10.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.352 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.6 | 1.1 | 4 |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
|
| nvd@nist.gov | 1.9 | 3.4 | 2.9 |
AV:L/AC:M/Au:N/C:P/I:N/A:N
|