← back
CVE-2022-23960

CVE-2022-23960

EPSS 0.5%
Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buffer (BHB) to influence mispredicted branches. Then, cache allocation can allow the attacker to obtain sensitive information.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://developer.arm.com/support/arm-security-updateshttps://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerabilityhttps://lists.debian.org/debian-lts-announce/2022/07/msg00000.htmlhttps://www.debian.org/security/2022/dsa-5173http://www.openwall.com/lists/oss-security/2022/03/18/2