QwikSec

Security Database

CVE

CWE

Training

CVE-2022-23960

Published: Mar 12, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buffer (BHB) to influence mispredicted branches. Then, cache allocation can allow the attacker to obtain sensitive information.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability

x_refsource_CONFIRM

https://developer.arm.com/support/arm-security-updates

x_refsource_MISC

[oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20220701 [SECURITY] [DLA 3065-1] linux security update

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.