PT-2023-1507 · Amd+5 · Amd Processors+5

Pawel Wieczorkiewicz

Publicado

2023-02-10

Atualizado

2026-03-14

CVE-2022-27672

CVSS v3.1

4.7

Média

Vetor

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions AMD processors (affected versions not specified)

Description When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch, potentially resulting in information disclosure. This issue is related to errors occurring after a core exits the C0 sleep state. Exploitation of this issue may allow an attacker to disclose protected information, including access to the return address predictor cache.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

BDU:2023-00934

CVE-2022-27672

MGASA-2023-0087

MGASA-2023-0088

OESA-2023-1188

OESA-2023-1250

OESA-2023-1251

OESA-2023-1252

OPENSUSE-SU-2024:12715-1

RHSA-2023:7370

RHSA-2023:7379

SUSE-SU-2023:0692-1

SUSE-SU-2023_0692-1

USN-5978-1

USN-6079-1

USN-6080-1

USN-6085-1

USN-6090-1

USN-6091-1

USN-6096-1

USN-6133-1

USN-6134-1

USN-6284-1

USN-6301-1

USN-6312-1

USN-6314-1

USN-6331-1

USN-6337-1

USN-6385-1

USN-6396-1

USN-6396-2

USN-6396-3

Produtos afetados

Amd Processors

Astra Linux

Debian

Linuxmint

Suse

Ubuntu

PT-2023-1507 · Amd+5 · Amd Processors+5

CVE-2022-27672

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 190