8 matches found
CVE-2017-5715
CVE-2017-5715 (Spectre Variant 2) describes speculative-execution side-channel issues used to disclose memory. Connected docs show concrete mitigations and impact across vendors: AMD notes that LFENCE/JMP mitigation (V2-2) may be insufficient on some CPUs; AMD recommends standard mitigations (ret...
CVE-2017-5753
CVE-2017-5753 is part of the Spectre family (Variant 1) described in the SPECTRE_MELTDOWN_ADVISORY: it involves speculative execution and a bounds-check bypass that can enable an unprivileged attacker to read privileged memory via cache timing analysis. IBM’s AIX/VIOS advisories and iFixes addres...
CVE-2018-3639
CVE-2018-3639 is a speculative execution side‑channel vulnerability (SSB) that can leak memory via speculative stores. The Connected ALMA doc notes a mitigation: SSB is disabled by the new alt-java launcher, reducing impact at the cost of performance, and it references OpenJDK 8u282 as part of th...
CVE-2020-24489
CVE-2020-24489 concerns incomplete cleanup in some Intel VT-d products enabling potential local-privilege escalation for an authenticated user. Connected advisories confirm mitigation via Intel CPU microcode updates delivered through distribution security advisories (e.g., intel-microcode/microco...
CVE-2022-0002
CVE-2022-0002 describes non-transparent sharing of the branch predictor within a context on some Intel processors, enabling potential information disclosure via local access. Connected documents confirm this is a Linux kernel/Intel-related issue referenced across multiple advisories (e.g., Astra ...
CVE-2021-33150
CVE-2021-33150 describes a hardware-level issue in some Intel Trace Hub instances where activation of test or debug logic at runtime may allow an unauthenticated user with physical access to escalate privileges. The normal impact is local/physical attack resulting in elevated privileges; no remot...
CVE-2017-5703
CVE-2017-5703 concerns Intel SPI Flash controller configuration that can let a local attacker alter SPI flash behavior, potentially causing DoS. Connected advisories confirm impact on Intel-based platforms and related vendor responses. IBM’s bulletin lists affected IBM/UEFI firmware and concrete ...
CVE-2020-0559
Intel PROSet/Wireless WiFi software for Windows 7/8.1 contains insecure inherited permissions that may allow an authenticated, local attacker to escalate privileges. The issue affects multiple Intel wireless adapters (e.g., AX200/AX201, Wireless-AC 9560/9462/9461/9260, 8265/8260/3168/7265, 3165, ...