The vulnerability of the Intra-mode BTI implementation of Intel microprogramming software allows a hacker to gain unauthorized access to protected information.

🗓️ 28 Mar 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Intel Intra-mode vulnerability enables attacker to access protected information due to parameter processing errors.

Reporter	Title	Published	Views	Family All 291
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Intel Processors affect IBM Cloud Pak System	31 Mar 202315:06	–	ibm
Tenable Nessus	Amazon Linux 2022 : bpftool, kernel, kernel-devel (ALAS2022-2022-039)	6 Sep 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2022 : bpftool, kernel, kernel-devel (ALAS2022-2022-185)	5 Nov 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-070)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2-2022-1761 (ALAS-2022-1761)	8 Mar 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-011 (ALASKERNEL-5.10-2022-011)	2 May 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2022-023 (ALASKERNEL-5.4-2022-023)	24 May 202200:00	–	nessus
Tenable Nessus	Amazon Linux AMI : kernel (ALAS-2022-1571)	8 Mar 202200:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0125: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2022:0125)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : kernel (ALSA-2022:1988)	12 May 202200:00	–	nessus

Vulners

Node

red_hat red_hat_enterprise_linuxMatch7

OR

red_hat red_hat_enterprise_linuxMatch8

OR

canonical ubuntuMatch21.10

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/CVE-2022-0002
access	www.access.redhat.com/security/cve/cve-2022-0002
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
vusec	www.vusec.net/projects/bhi-spectre-bhb/
intel	www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/branch-history-injection.html
community	www.community.intel.com/t5/Blogs/Products-and-Solutions/Security/Chips-Salsa-Episode-12-March-2022-Security-Advisories/post/1365250
intel	www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html
wiki	www.wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BHI
ubuntu	www.ubuntu.com/security/notices/USN-5317-1
ubuntu	www.ubuntu.com/security/notices/USN-5318-1

27 Sep 2023 00:00Current

6.4Medium risk

Vulners AI Score6.4

CVSS 24

CVSS 34.7

EPSS0.00451

Intra mode vulnerability Intel microprogramming Parameter processing error Unauthorized access Protected information