CVE-2022-25368
Severity Score
4.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the CPU BHB) to influence mispredicted branches in the victim's hardware context. Speculation caused by these mispredicted branches can then potentially be used to cause cache allocation, which can then be used to infer information that should be protected.
Spectre BHB es una variante de Spectre-v2 en la que el código malicioso usa el historial de bifurcaciones compartido (almacenado en el BHB de la CPU) para influir en las bifurcaciones mal predichas en el contexto de hardware de la víctima. Una especulación causada por estas ramas mal predichas puede entonces ser usada potencialmente para causar la asignación de la caché, la cual puede ser usada para inferir información que debe ser protegida
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-02-19 CVE Reserved
- 2022-03-09 CVE Published
- 2023-09-30 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb | 2022-03-16 |
| URL | Date | SRC |
|---|---|---|
| https://amperecomputing.com/products/security-bulletins/impact-of-spectre-bhb-on-ampere.html | 2022-03-16 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Amperecomputing Search vendor "Amperecomputing" | Ampere Altra Max Firmware Search vendor "Amperecomputing" for product "Ampere Altra Max Firmware" | - | - |
Affected
| in | Amperecomputing Search vendor "Amperecomputing" | Ampere Altra Max Search vendor "Amperecomputing" for product "Ampere Altra Max" | - | - |
Safe
|
| Amperecomputing Search vendor "Amperecomputing" | Ampere Altra Firmware Search vendor "Amperecomputing" for product "Ampere Altra Firmware" | - | - |
Affected
| in | Amperecomputing Search vendor "Amperecomputing" | Ampere Altra Search vendor "Amperecomputing" for product "Ampere Altra" | - | - |
Safe
|
| Arm Search vendor "Arm" | Neoverse-e1 Firmware Search vendor "Arm" for product "Neoverse-e1 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Neoverse-e1 Search vendor "Arm" for product "Neoverse-e1" | - | - |
Safe
|
| Arm Search vendor "Arm" | Neoverse-v1 Firmware Search vendor "Arm" for product "Neoverse-v1 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Neoverse-v1 Search vendor "Arm" for product "Neoverse-v1" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a57 Firmware Search vendor "Arm" for product "Cortex-a57 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a57 Search vendor "Arm" for product "Cortex-a57" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a65 Firmware Search vendor "Arm" for product "Cortex-a65 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a65 Search vendor "Arm" for product "Cortex-a65" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a65ae Firmware Search vendor "Arm" for product "Cortex-a65ae Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a65ae Search vendor "Arm" for product "Cortex-a65ae" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a72 Firmware Search vendor "Arm" for product "Cortex-a72 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a72 Search vendor "Arm" for product "Cortex-a72" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a73 Firmware Search vendor "Arm" for product "Cortex-a73 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a73 Search vendor "Arm" for product "Cortex-a73" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a75 Firmware Search vendor "Arm" for product "Cortex-a75 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a75 Search vendor "Arm" for product "Cortex-a75" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a76 Firmware Search vendor "Arm" for product "Cortex-a76 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a76 Search vendor "Arm" for product "Cortex-a76" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a76ae Firmware Search vendor "Arm" for product "Cortex-a76ae Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a76ae Search vendor "Arm" for product "Cortex-a76ae" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a77 Firmware Search vendor "Arm" for product "Cortex-a77 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a77 Search vendor "Arm" for product "Cortex-a77" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a78 Firmware Search vendor "Arm" for product "Cortex-a78 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a78 Search vendor "Arm" for product "Cortex-a78" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a78ae Firmware Search vendor "Arm" for product "Cortex-a78ae Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a78ae Search vendor "Arm" for product "Cortex-a78ae" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a78c Firmware Search vendor "Arm" for product "Cortex-a78c Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a78c Search vendor "Arm" for product "Cortex-a78c" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-x1 Firmware Search vendor "Arm" for product "Cortex-x1 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-x1 Search vendor "Arm" for product "Cortex-x1" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-x2 Firmware Search vendor "Arm" for product "Cortex-x2 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-x2 Search vendor "Arm" for product "Cortex-x2" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a710 Firmware Search vendor "Arm" for product "Cortex-a710 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a710 Search vendor "Arm" for product "Cortex-a710" | - | - |
Safe
|
| Arm Search vendor "Arm" | Cortex-a15 Firmware Search vendor "Arm" for product "Cortex-a15 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Cortex-a15 Search vendor "Arm" for product "Cortex-a15" | - | - |
Safe
|
| Arm Search vendor "Arm" | Neoverse N1 Firmware Search vendor "Arm" for product "Neoverse N1 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Neoverse N1 Search vendor "Arm" for product "Neoverse N1" | - | - |
Safe
|
| Arm Search vendor "Arm" | Neoverse N2 Firmware Search vendor "Arm" for product "Neoverse N2 Firmware" | - | - |
Affected
| in | Arm Search vendor "Arm" | Neoverse N2 Search vendor "Arm" for product "Neoverse N2" | - | - |
Safe
|