Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2022/11/09 12:26 p.m.52 views

CVE-2022-23824

A flaw was found in hw. The AMD CPUs can be attacked similar to the previously known Spectre Variant 2 CVE-2017-5715. This issue affects AMD CPUs where the OS relies on IBPB to flush the return address predictor. As a result, an unprivileged attacker could use this flaw to cross the syscall and...

6.5CVSS6.1AI score0.74041EPSS
Exploits8References5
Amd
Amd
added 2022/11/08 12:0 a.m.87 views

IBPB and Return Stack Buffer Interactions

Bulletin ID: AMD-SB-1040 Potential Impact: Information Disclosure Severity: Medium Summary AMD is aware of a potential vulnerability affecting AMD CPUs where the OS relies on IBPB to flush the return address predictor. This may allow for CVE-2017-5715 previously known as Spectre Variant 2 attacks...

5.5CVSS6.4AI score0.00586EPSS
Exploits0
Qualys Blog
Qualys Blog
added 2018/05/14 6:47 p.m.87 views

What we’ve got here is failure to communicate: OS vendors misread CPU docs, create flaw

In a memorable scene from “Jumpin’ Jack Flash,” Whoopi Goldberg struggles to understand the lyrics of the eponymous song from the Rolling Stones, as she pleads: “Mick, Mick, Mick, speak English!” It appears that multiple operating system vendors had similar trouble interpreting Intel and AMD...

7.2CVSS7.6AI score0.18404EPSS
Exploits9
CISA
CISA
added 2016/01/19 12:0 a.m.136 views

Linux Kernel Vulnerability

US-CERT is aware of a Linux kernel vulnerability affecting Linux PCs and servers and Android-based devices. Exploitation of this vulnerability may allow an attacker to take control of an affected system. US-CERT recommends that users and administrators review the Redhat Security Blog and the Debi...

7.2CVSS2.9AI score0.03646EPSS
In wildExploits14References2
securityvulns
securityvulns
added 2014/10/13 12:0 a.m.738 views

CA20141001-01: Security Notice for Bash Shellshock Vulnerability

CA20141001-01: Security Notice for Bash Shellshock Vulnerability Issued: October 01, 2014 Updated: October 03, 2014 CA Technologies is investigating multiple GNU Bash vulnerabilities, referred to as the "Shellshock" vulnerabilities, which were publicly disclosed on September 24-27, 2014. CVE...

10CVSS9.2AI score0.99999EPSS
Exploits157
Rows per page
Query Builder