Home > Vulnerability Database > CVE-2022-40982

Mend.io Vulnerability Database

CVE-2022-40982

Date: August 10, 2023

Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Severity Score

6.5

Related Resources (17)

Url: http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00828.html

Url: https://www.debian.org/security/2023/dsa-5474

Url: https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html

Url: https://www.debian.org/security/2023/dsa-5475

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/

Url: https://security-tracker.debian.org/tracker/CVE-2022-40982

Url: https://xenbits.xen.org/xsa/advisory-435.html

Url: https://security.netapp.com/advisory/ntap-20230811-0001/

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-40982

Url: https://access.redhat.com/solutions/7027704

Url: https://aws.amazon.com/security/security-bulletins/AWS-2023-007/

Url: https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/

Url: https://downfall.page

Url: https://www.mend.io/vulnerability-database/CVE-2022-40982

Severity Score

6.5

Weakness Type (CWE)

Observable Discrepancy

CWE-203

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2022-40982

Date: August 10, 2023

Severity Score

Related Resources (17)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?