CVE-2022-40982
published 2023-08-11CVE-2022-40982: Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an…
medium6.5CVSS 3.1
AVLACLPRLUINSCCHINAN
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | intel-microcode | < intel-microcode 3.20230808.1~deb12u1 (bookworm) | intel-microcode 3.20230808.1~deb12u1 (bookworm) |
| debian | linux | < intel-microcode 3.20230808.1~deb12u1 (bookworm) | intel-microcode 3.20230808.1~deb12u1 (bookworm) |
| chrome_chrome | — | — | |
| intel | microcode | < 20230808 | 20230808 |
| linux | linux_kernel | >= 0 < 5.10.179-5 | 5.10.179-5 |
| linux | linux_kernel | >= 0 < 6.1.38-4 | 6.1.38-4 |
| linux | linux_kernel | >= 0 < 6.4.4-3 | 6.4.4-3 |
| linux | linux_kernel | >= 0 < 6.4.4-3 | 6.4.4-3 |
| linux | linux_kernel | >= 0 < 5.4.0-159.176 | 5.4.0-159.176 |
| linux | linux_kernel | >= 0 < 5.15.0-82.91 | 5.15.0-82.91 |
| linux | linux_kernel | >= 0 < 4.4.0-245.279 | 4.4.0-245.279 |
| linux | linux_kernel | >= 0 < 4.15.0-218.229 | 4.15.0-218.229 |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
osv6.5MEDIUM