VDB
ALPINE-CVE-2022-40982
ALPINE-CVE-2022-40982
PUBLISHED
CVSS 6.5 MEDIUM
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.16 | intel-ucode | 20200520-r0, 20200508-r0, 0 |
| Alpine:v3.15 | xen | 4.13.0-r2, 4.13.0-r4, 4.13.1-r0 |
| Alpine:v3.23 | intel-ucode | 20201110-r0, 20201112-r0, 20210216-r0 |
| Alpine:v3.21 | xen | 4.7.1-r3, 0, 4.9.1-r3 |
| Alpine:v3.17 | intel-ucode | 20180807a-r0, 20180807a-r1, 20190514a-r0 |
| Alpine:v3.21 | intel-ucode | 20200609-r0, 20200520-r0, 20191115-r0 |
| Alpine:v3.17 | xen | 4.4.1-r4, 0, 4.0.1-r1 |
| Alpine:v3.20 | intel-ucode | 20190918-r0, 20190618-r0, 20190514a-r0 |
| Alpine:v3.18 | xen | 4.4.1-r4, 4.4.1-r5, 4.4.1-r6 |
| Alpine:v3.16 | xen | 4.4.1-r2, 0, 4.0.1-r0 |
| Alpine:v3.19 | xen | 4.2.1-r9, 4.2.2-r0, 4.2.2-r10 |
| Alpine:v3.23 | xen | 4.17.0-r1, 4.7.1-r0, 4.7.1-r1 |
| Alpine:v3.20 | xen | 4.2.0-r6, 4.6.1-r2, 0 |
| Alpine:v3.19 | intel-ucode | 20200616-r0, 20200609-r0, 20200508-r0 |
| Alpine:v3.18 | intel-ucode | 20191113-r0, 20200609-r0, 20200520-r0 |
| Alpine:v3.15 | intel-ucode | *, 20180312-r0, 20180108-r0 |
| Alpine:v3.24 | xen | 0 |
| Alpine:v3.22 | xen | 4.0.1-r2, 4.0.1-r3, 4.1.0-r1 |
| Alpine:v3.22 | intel-ucode | 0, *, 20230512-r0 |
| Alpine:v3.24 | intel-ucode | 0 |
Timeline
- Aug 11, 2023 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 15, 2026 CVE Updated