CVE-2022-25368

Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the CPU BHB) to influence mispredicted branches in the victim's hardware context. Speculation caused by these mispredicted branches can then potentially be used to cause cache allocation, which can then be used to infer information that should be protected.

CVSS v3 4.7 MEDIUM
CVSS v2.0 1.9 LOW

4.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.0 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

1.9^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:M/Au:N/C:P/I:N/A:N

Exploitability : 3.4 / Impact : 2.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://amperecomputing.com/products/security-bulletins/impact-of-spectre-bhb-on-ampere.html	Vendor Advisory
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960	Third Party Advisory VDB Entry
https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb	Patch Technical Description Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:amperecomputing:ampere_altra_max_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amperecomputing:ampere_altra_max:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:amperecomputing:ampere_altra_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amperecomputing:ampere_altra:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:arm:neoverse-e1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:neoverse-e1:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:arm:neoverse-v1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:neoverse-v1:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:arm:cortex-a65_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a65:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:arm:cortex-a65ae_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a65ae:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:arm:cortex-a75_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a75:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:arm:cortex-a76_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a76:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:arm:cortex-a76ae_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a76ae:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:arm:cortex-a77_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a77:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:arm:cortex-a78_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a78:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:arm:cortex-a78ae_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a78ae:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:arm:cortex-a78c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a78c:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:arm:cortex-x1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-x1:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:arm:cortex-x2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-x2:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:arm:cortex-a710_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a710:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:arm:cortex-a15_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:cortex-a15:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:arm:neoverse_n1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:neoverse_n1:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:arm:neoverse_n2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arm:neoverse_n2:-:*:*:*:*:*:*:*

History

16 Mar 2022, 03:40

Type	Values Removed	Values Added
CPE		cpe:2.3:o:amperecomputing:ampere_altra_max_firmware:-:::::::* cpe:2.3:o:arm:neoverse_n2_firmware:-:::::::* cpe:2.3:o:arm:neoverse-v1_firmware:-:::::::* cpe:2.3:h:arm:cortex-x2:-:::::::* cpe:2.3:h:amperecomputing:ampere_altra_max:-:::::::* cpe:2.3:h:arm:cortex-a57:-:::::::* cpe:2.3:o:arm:cortex-a78c_firmware:-:::::::* cpe:2.3:h:arm:cortex-a72:-:::::::* cpe:2.3:o:arm:cortex-a76_firmware:-:::::::* cpe:2.3:h:arm:neoverse-e1:-:::::::* cpe:2.3:o:arm:cortex-x1_firmware:-:::::::* cpe:2.3:h:arm:cortex-a76:-:::::::* cpe:2.3:o:arm:cortex-a76ae_firmware:-:::::::* cpe:2.3:o:arm:cortex-a65ae_firmware:-:::::::* cpe:2.3:h:arm:cortex-a65ae:-:::::::* cpe:2.3:o:arm:cortex-a78ae_firmware:-:::::::* cpe:2.3:h:arm:cortex-a710:-:::::::* cpe:2.3:h:arm:cortex-x1:-:::::::* cpe:2.3:o:arm:neoverse_n1_firmware:-:::::::* cpe:2.3:o:amperecomputing:ampere_altra_firmware:-:::::::* cpe:2.3:h:amperecomputing:ampere_altra:-:::::::* cpe:2.3:o:arm:cortex-a65_firmware:-:::::::* cpe:2.3:h:arm:cortex-a76ae:-:::::::* cpe:2.3:o:arm:cortex-a15_firmware:-:::::::* cpe:2.3:h:arm:neoverse_n1:-:::::::* cpe:2.3:h:arm:cortex-a77:-:::::::* cpe:2.3:o:arm:cortex-x2_firmware:-:::::::* cpe:2.3:h:arm:cortex-a65:-:::::::* cpe:2.3:h:arm:cortex-a75:-:::::::* cpe:2.3:h:arm:cortex-a78c:-:::::::* cpe:2.3:o:arm:cortex-a75_firmware:-:::::::* cpe:2.3:o:arm:cortex-a77_firmware:-:::::::* cpe:2.3:h:arm:cortex-a73:-:::::::* cpe:2.3:o:arm:cortex-a710_firmware:-:::::::* cpe:2.3:h:arm:neoverse-v1:-:::::::* cpe:2.3:h:arm:neoverse_n2:-:::::::* cpe:2.3:h:arm:cortex-a15:-:::::::* cpe:2.3:o:arm:cortex-a57_firmware:-:::::::* cpe:2.3:h:arm:cortex-a78ae:-:::::::* cpe:2.3:o:arm:cortex-a73_firmware:-:::::::* cpe:2.3:o:arm:neoverse-e1_firmware:-:::::::* cpe:2.3:o:arm:cortex-a78_firmware:-:::::::* cpe:2.3:h:arm:cortex-a78:-:::::::* cpe:2.3:o:arm:cortex-a72_firmware:-:::::::*
CWE		NVD-CWE-noinfo
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 1.9 v3 : 4.7
First Time		Arm cortex-a75 Firmware Arm cortex-a72 Arm cortex-a710 Arm cortex-a77 Firmware Arm cortex-a57 Firmware Arm cortex-a65 Firmware Arm cortex-a65 Arm neoverse N1 Arm neoverse N2 Arm cortex-a78ae Firmware Amperecomputing ampere Altra Firmware Arm cortex-a710 Firmware Arm cortex-a76ae Firmware Arm cortex-a72 Firmware Amperecomputing ampere Altra Max Firmware Arm cortex-a76ae Amperecomputing ampere Altra Max Arm neoverse N2 Firmware Arm cortex-a78ae Arm cortex-a15 Firmware Arm cortex-x2 Arm neoverse-v1 Arm cortex-x2 Firmware Amperecomputing ampere Altra Arm cortex-a78 Arm neoverse-e1 Firmware Arm cortex-a78c Arm cortex-a73 Firmware Arm Arm cortex-a76 Firmware Arm cortex-x1 Amperecomputing Arm cortex-a65ae Arm cortex-a78c Firmware Arm cortex-a65ae Firmware Arm cortex-x1 Firmware Arm cortex-a15 Arm cortex-a75 Arm cortex-a57 Arm cortex-a76 Arm neoverse-e1 Arm cortex-a77 Arm neoverse N1 Firmware Arm neoverse-v1 Firmware Arm cortex-a78 Firmware Arm cortex-a73
References	~~(MISC) https://amperecomputing.com/products/security-bulletins/impact-of-spectre-bhb-on-ampere.html -~~	(MISC) https://amperecomputing.com/products/security-bulletins/impact-of-spectre-bhb-on-ampere.html - Vendor Advisory
References	~~(CONFIRM) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960 -~~	(CONFIRM) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960 - Third Party Advisory, VDB Entry
References	~~(MISC) https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb -~~	(MISC) https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb - Patch, Technical Description, Vendor Advisory

10 Mar 2022, 17:53

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-03-10 17:47

Updated : 2023-12-10 14:22

NVD link : CVE-2022-25368

Mitre link : CVE-2022-25368

CVE.ORG link : CVE-2022-25368

JSON object : View

Products Affected

arm

cortex-x1
cortex-a78
cortex-a57
cortex-a710_firmware
cortex-a78ae_firmware
neoverse-e1
cortex-a710
neoverse_n2
neoverse_n1_firmware
cortex-a57_firmware
cortex-a78c_firmware
cortex-a76
cortex-a75_firmware
neoverse-e1_firmware
cortex-a72_firmware
cortex-a76ae_firmware
cortex-x2_firmware
cortex-a65ae
neoverse-v1_firmware
neoverse_n1
cortex-a65
cortex-a15
cortex-a76ae
cortex-a77
cortex-a15_firmware
neoverse_n2_firmware
cortex-a65_firmware
cortex-x2
cortex-a78_firmware
cortex-a75
cortex-a72
cortex-a73
cortex-a73_firmware
neoverse-v1
cortex-a78c
cortex-a78ae
cortex-a77_firmware
cortex-a65ae_firmware
cortex-x1_firmware
cortex-a76_firmware

amperecomputing

ampere_altra_max_firmware
ampere_altra_max
ampere_altra_firmware
ampere_altra

CWE

NVD-CWE-noinfo

4.7 /10

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

1.9 /10

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2022-25368

4.7^/10

1.9^/10

Attach tags to `CVE-2022-25368`