Vulnerabilities > CVE-2024-2201

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

NVD

Published: 2024-12-19

Updated: 2024-12-19

Summary

A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.

References

http://www.openwall.com/lists/oss-security/2024/04/09/15
http://www.openwall.com/lists/oss-security/2024/05/07/7
http://xenbits.xen.org/xsa/advisory-456.html
https://github.com/vusec/inspectre-gadget?tab=readme-ov-file
https://lists.fedoraproject.org/archives/list/[email protected]/message/6QKNCPX7CJUK4I6BRGABAUQK2DMQZUCA/
https://lists.fedoraproject.org/archives/list/[email protected]/message/D5OK6MH75S7YWD34EWW7QIZTS627RIE3/
https://lists.fedoraproject.org/archives/list/[email protected]/message/RYAZ7P6YFJ2E3FHKAGIKHWS46KYMMTZH/
https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/branch-history-injection.htm
https://www.kb.cert.org/vuls/id/155143

Vulnerabilities > CVE-2024-2201 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2024-2201"}]}

Summary

References

Vulnerabilities > CVE-2024-2201