CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
23.3%
Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the CPU BHB) to influence mispredicted branches in the victim’s hardware context. Speculation caused by these mispredicted branches can then potentially be used to cause cache allocation, which can then be used to infer information that should be protected.
Vendor | Product | Version | CPE |
---|---|---|---|
amperecomputing | ampere_altra_max_firmware | - | cpe:2.3:o:amperecomputing:ampere_altra_max_firmware:-:*:*:*:*:*:*:* |
amperecomputing | ampere_altra_max | - | cpe:2.3:h:amperecomputing:ampere_altra_max:-:*:*:*:*:*:*:* |
amperecomputing | ampere_altra_firmware | - | cpe:2.3:o:amperecomputing:ampere_altra_firmware:-:*:*:*:*:*:*:* |
amperecomputing | ampere_altra | - | cpe:2.3:h:amperecomputing:ampere_altra:-:*:*:*:*:*:*:* |
arm | neoverse-e1_firmware | - | cpe:2.3:o:arm:neoverse-e1_firmware:-:*:*:*:*:*:*:* |
arm | neoverse-e1 | - | cpe:2.3:h:arm:neoverse-e1:-:*:*:*:*:*:*:* |
arm | neoverse-v1_firmware | - | cpe:2.3:o:arm:neoverse-v1_firmware:-:*:*:*:*:*:*:* |
arm | neoverse-v1 | - | cpe:2.3:h:arm:neoverse-v1:-:*:*:*:*:*:*:* |
arm | cortex-a57_firmware | - | cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:* |
arm | cortex-a57 | - | cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
23.3%