VDB

CESS-2022-29901

CESS-2022-29901 PUBLISHED CVSS 6.5 MEDIUM

Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Timeline

  • Jul 12, 2022 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›