CVE-2022-40982

MEDIUM

Intel(R) Processors - Info Disclosure

Title source: llm

Description

Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

References (15)

Scores

CVSS v3 6.5
EPSS 0.0079
EPSS Percentile 73.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Classification

CWE
CWE-1342 CWE-203
Status published

Affected Products (50)

redhat/enterprise_linux
redhat/enterprise_linux
redhat/enterprise_linux
redhat/enterprise_linux
xen/xen
intel/microcode < 20230808
intel/xeon_e-2314_firmware
intel/xeon_e-2324g_firmware
intel/xeon_e-2334_firmware
intel/xeon_e-2374g_firmware
intel/xeon_e-2336_firmware
intel/xeon_e-2356g_firmware
intel/xeon_e-2386g_firmware
intel/xeon_e-2378_firmware
intel/xeon_e-2378g_firmware
... and 35 more

Timeline

Published Aug 11, 2023
Tracked Since Feb 18, 2026