Lucene search

K
nvd[email protected]NVD:CVE-2023-20583
HistoryAug 01, 2023 - 7:15 p.m.

CVE-2023-20583

2023-08-0119:15:09
CWE-203
web.nvd.nist.gov
8
amd
side-channel
vulnerability
power consumption
cache line
sensitive information
authenticated attacker

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.8

Confidence

High

EPSS

0

Percentile

9.0%

A potential power side-channel vulnerability in
AMD processors may allow an authenticated attacker to monitor the CPU power
consumption as the data in a cache line changes over time potentially resulting
in a leak of sensitive information.

Affected configurations

Nvd
Node
amd
VendorProductVersionCPE
amd**cpe:2.3:h:amd:*:*:*:*:*:*:*:*:*

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.8

Confidence

High

EPSS

0

Percentile

9.0%

Related for NVD:CVE-2023-20583