Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K000137188
HistoryOct 09, 2023 - 12:00 a.m.

K000137188 : AMD CPU vulnerability CVE-2021-26401

2023-10-0900:00:00
my.f5.com
4

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

7.3 High

AI Score

Confidence

Low

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.975 High

EPSS

Percentile

100.0%

JSON

Security Advisory Description

LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. (CVE-2021-26401)

Impact

There is no impact; F5 products are not affected by this vulnerability.

Related

prion 2
nessus 97
redhat 19
ubuntucve 2
amd 1
debiancve 2
cve 1
redhatcve 1
openvas 30
centos 5
rosalinux 1
veracode 1
oraclelinux 7
citrix 1
suse 16
debian 3
threatpost 1
mageia 2
amazon 3
ibm 1
osv 2
thn 1
prion
prion
Design/Logic Flaw
2022-03-11 18:15:00
Information disclosure
2018-01-04 13:29:00
nessus
nessus
RHEL 6 : kernel (RHSA-2023:0187)
2023-01-17 00:00:00
Oracle Linux 6 : kernel (ELSA-2023-0187)
2023-10-24 00:00:00
RHEL 7 : kernel (RHSA-2023:0399)
2023-01-24 00:00:00
redhat
redhat
(RHSA-2023:0187) Moderate: kernel security update
2023-01-17 08:48:58
(RHSA-2023:0400) Important: kernel-rt security and bug fix update
2023-01-24 09:46:52
(RHSA-2023:0399) Important: kernel security and bug fix update
2023-01-24 09:46:52
ubuntucve
ubuntucve
CVE-2021-26401
2022-03-11 00:00:00
CVE-2017-5715
2018-01-03 00:00:00
amd
amd
LFENCE/JMP Mitigation Update for CVE-2017-5715
2022-03-08 00:00:00
debiancve
debiancve
CVE-2021-26401
2022-03-11 18:15:00
CVE-2017-5715
2018-01-04 13:29:00
cve
cve
CVE-2021-26401
2022-03-11 18:15:00
redhatcve
redhatcve
CVE-2021-26401
2022-03-09 10:23:54
openvas
openvas
CentOS: Security Advisory for bpftool (CESA-2023:0399)
2023-01-31 00:00:00
Debian: Security Advisory (DLA-1349-1)
2018-04-16 00:00:00
RedHat Update for microcode_ctl RHSA-2018:0093-01
2018-01-17 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2023-01-30 16:50:20
microcode_ctl security update
2018-01-04 11:40:52
libvirt security update
2018-01-04 19:54:04
rosalinux
rosalinux
Advisory ROSA-SA-2023-2097
2023-02-07 10:10:41
veracode
veracode
Information Disclosure
2022-06-23 22:13:13
oraclelinux
oraclelinux
kernel security update
2023-10-20 00:00:00
microcode_ctl security update
2018-01-04 00:00:00
microcode_ctl security update
2018-01-21 00:00:00
citrix
citrix
Citrix Hypervisor Security Update
2022-03-07 14:55:18
suse
suse
Security update for qemu (important)
2018-01-05 18:10:57
Security update for ucode-intel (important)
2018-03-16 18:09:28
Security update for ucode-intel (important)
2018-01-04 03:07:17
debian
debian
[SECURITY] [DLA 1349-1] linux-tools security update
2018-04-16 22:31:08
[SECURITY] [DLA 1362-1] gcc-4.9-backport new package
2018-04-25 16:19:40
[SECURITY] [DLA 2148-1] amd64-microcode security update
2020-03-20 19:56:36
threatpost
threatpost
New Spectre-Level Flaw Targets Return Stack Buffer
2018-07-23 18:27:20
mageia
mageia
Updated microcode packages fix security vulnerability
2018-05-29 22:41:14
Updated microcode packages fix security vulnerabilities
2018-01-13 17:28:36
amazon
amazon
Important: linux-firmware
2018-02-20 21:46:00
Important: qemu-kvm
2018-01-12 21:24:00
Important: microcode_ctl
2018-02-07 18:54:00
ibm
ibm
Security Bulletin: IBM has released Unified Extensible Firmware Interface (UEFI) fixes in response to the vulnerability known as Spectre (CVE-2017-5715)
2023-04-18 18:22:18
osv
osv
CVE-2017-5715
2018-01-04 13:29:00
amd64-microcode - security update
2021-08-16 00:00:00
thn
thn
Intel Admits It Won't Be Possible to Fix Spectre (V2) Flaw in Some Processors
2018-04-04 11:17:00

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

7.3 High

AI Score

Confidence

Low

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.975 High

EPSS

Percentile

100.0%

JSON
Related for F5:K000137188
prion2nessus97redhat19ubuntucve2amd1debiancve2cve1redhatcve1openvas30centos5rosalinux1veracode1oraclelinux7citrix1suse16debian3threatpost1mageia2amazon3ibm1osv2thn1