6 matches found
CVE-2022-0001
CVE-2022-0001 pertains to Intel CPUs and Branch History Injection (BHI). The issue arises from non-transparent sharing of branch predictor selectors between contexts, potentially allowing an authorized local attacker to disclose information via speculative execution side channels. Affected materi...
CVE-2022-0002
CVE-2022-0002 describes non-transparent sharing of the branch predictor within a context on some Intel processors, enabling potential information disclosure via local access. Connected documents confirm this is a Linux kernel/Intel-related issue referenced across multiple advisories (e.g., Astra ...
CVE-2021-0127
CVE-2021-0127 concerns insufficient control flow management in some Intel processors, enabling potential local DoS. Connected docs confirm a microcode/firmware issue addressed by updating Intel microcode via microcode_ctl packages (e.g., ALMA/ALAS2 advisories and vendor advisories). Remediation i...
CVE-2021-0145
CVE-2021-0145 involves improper initialization of shared resources in some Intel processors, enabling a local, authenticated attacker to potentially disclose information. The initial entry describes local access information disclosure risk with a CVSS v3.1 base score of 5.5 (C:H, I:N, A:N) and lo...
CVE-2021-0157
CVE-2021-0157 is described in Intel’s BIOS Reference Code Advisory (INTEL-SA-00562). It denotes insufficient control flow management in BIOS firmware for certain Intel processors that could enable privilege escalation via local access. The advisory lists mitigations through firmware updates provi...
CVE-2021-0158
CVE-2021-0158 involves improper input validation in the BIOS firmware for some Intel processors, enabling local privilege escalation by a user with privileged/local access. The connected intel advisory (INTEL-SA-00562) confirms this family, describing two CVEs in BIOS reference code and noting th...