Ampere Altra devices before 1.08g and Ampere Altra Max devices before 2.05a allow attackers to control the predictions for return addresses and potentially hijack code flow to execute arbitrary code via a side-channel attack, aka a "Retbleed" issue.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HAmperecomputing Ampere Altra
HWAmperecomputingwszystkie wersjeAmperecomputing Ampere Altra Firmware
OSAmperecomputing< 1.08gAmperecomputing Ampere Altra Max
HWAmperecomputingwszystkie wersjeAmperecomputing Ampere Altra Max Firmware
OSAmperecomputing< 2.05a
Powiązane podatności
In Ampere AltraMax and Ampere Altra before 2.10c, improper access controls allows the OS to reinitialize a dis...
On Ampere Altra and AltraMax devices before SRP 1.09, the Altra reference design of UEFI accesses allows insec...
Ampere Altra before SRP 1.08b and Altra Max before SRP 2.05 allow information disclosure of power telemetry v...
Ampere Altra and Ampere Altra Max devices through 2022-07-15 allow attacks via Hertzbleed, which is a power si...
Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the C...