Vulnerabilities > Amperecomputing > Ampere Altra Firmware > 1.09
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-15 | CVE-2022-46892 | Unspecified vulnerability in Amperecomputing Ampere Altra Firmware and Ampere Altra MAX Firmware In Ampere AltraMax and Ampere Altra before 2.10c, improper access controls allows the OS to reinitialize a disabled root complex. | 9.8 |
| 2022-09-29 | CVE-2022-35888 | Information Exposure Through Discrepancy vulnerability in Amperecomputing products Ampere Altra and Ampere Altra Max devices through 2022-07-15 allow attacks via Hertzbleed, which is a power side-channel attack that extracts secret information from the CPU by correlating the power consumption with data being processed on the system. | 6.5 |