Vulnerability Description
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Atom P5921B | - |
| Intel | Atom P5931B | - |
| Intel | Atom P5942B | - |
| Intel | Atom P5962B | - |
| Intel | Atom X6200Fe | - |
| Intel | Atom X6211E | - |
| Intel | Atom X6212Re | - |
| Intel | Atom X6413E | - |
| Intel | Atom X6425E | - |
| Intel | Atom X6425Re | - |
| Intel | Atom X6427Fe | - |
| Intel | Celeron 5305U | - |
| Intel | Celeron 6305 | - |
| Intel | Celeron 6305E | - |
| Intel | Celeron 6600He | - |
| Intel | Celeron G5205U | - |
| Intel | Celeron G5305U | - |
| Intel | Celeron G5900 | - |
| Intel | Celeron G5900T | - |
| Intel | Celeron G5905 | - |
References
- http://www.openwall.com/lists/oss-security/2022/03/18/2Mailing ListThird Party Advisory
- https://security.netapp.com/advisory/ntap-20220818-0004/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.Vendor Advisory
- https://www.kb.cert.org/vuls/id/155143
- https://www.oracle.com/security-alerts/cpujul2022.htmlPatchThird Party Advisory
- http://www.openwall.com/lists/oss-security/2022/03/18/2Mailing ListThird Party Advisory
- https://security.netapp.com/advisory/ntap-20220818-0004/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.Vendor Advisory
- https://www.kb.cert.org/vuls/id/155143
- https://www.oracle.com/security-alerts/cpujul2022.htmlPatchThird Party Advisory
- https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerabilit
- https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerabil
FAQ
What is CVE-2022-0001?
CVE-2022-0001 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
How severe is CVE-2022-0001?
CVE-2022-0001 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-0001?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Atom P5921B, Intel Atom P5931B, Intel Atom P5942B, Intel Atom P5962B, Intel Atom X6200Fe.