CVE-2021-26313
MEDIUMXen - Observable Timing Discrepancy via Speculative Code Store Bypass
Title source: llmDescription
Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorrect speculation and could result in data leakage.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1003
Scores
CVSS v3
5.5
EPSS
0.0033
EPSS Percentile
24.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-208
CWE-203
Status
published
Products (8)
arm/cortex-a72
broadcom/bcm2711
debian/debian_linux
10.0
intel/core_i7-10700k
intel/core_i7-7700k
intel/core_i9-9900k
intel/xeon_silver_4214
xen/xen
Published
Jun 09, 2021
Tracked Since
Feb 18, 2026