Lucene search

K
redosRedosROS-20240904-09
HistorySep 04, 2024 - 12:00 a.m.

ROS-20240904-09

2024-09-0400:00:00
redos.red-soft.ru
6
amd processor
firmware vulnerability
zen2 microarchitecture
memory usage
exploitation
cpu core
unix

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

7.2

Confidence

Low

A firmware vulnerability in AMD processors based on the Zen2 microarchitecture is related to the
memory usage after memory has been freed. Exploitation of the vulnerability could allow an attacker to
track register contents while other processes are executing on the same CPU core

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64linux-firmware< 20240709-1UNKNOWN

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

7.2

Confidence

Low