CVE-2022-25368 : Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared b

Spectre BHB is a variant of Spectre-v2 in which malicious code uses the shared branch history (stored in the CPU BHB) to influence mispredicted branches in the victim's hardware context. Speculation caused by these mispredicted branches can then potentially be used to cause cache allocation, which can then be used to infer information that should be protected.

Published 2022-03-10 17:47:08

Updated 2022-03-16 03:40:17

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2022-25368

ARM » Cortex-a57 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a57 » Version: N/A
ARM » Cortex-a72 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a72 » Version: N/A
ARM » Cortex-a73 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a73 » Version: N/A
ARM » Cortex-a15 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a15_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a15 » Version: N/A
ARM » Cortex-a75 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a75_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a75 » Version: N/A
ARM » Cortex-a76 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a76_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a76 » Version: N/A
ARM » Cortex-a77 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a77_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a77 » Version: N/A
ARM » Cortex-a78 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a78_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a78 » Version: N/A
ARM » Cortex-a78ae Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a78ae_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a78ae » Version: N/A
ARM » Neoverse N1 Firmware » Version: N/A
cpe:2.3:o:arm:neoverse_n1_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Neoverse N1 » Version: N/A
ARM » Neoverse N2 Firmware » Version: N/A
cpe:2.3:o:arm:neoverse_n2_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Neoverse N2 » Version: N/A
ARM » Cortex-x1 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-x1_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-x1 » Version: N/A
ARM » Neoverse-e1 Firmware » Version: N/A
cpe:2.3:o:arm:neoverse-e1_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Neoverse-e1 » Version: N/A
ARM » Neoverse-v1 Firmware » Version: N/A
cpe:2.3:o:arm:neoverse-v1_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Neoverse-v1 » Version: N/A
ARM » Cortex-a65 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a65_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a65 » Version: N/A
ARM » Cortex-a65ae Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a65ae_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a65ae » Version: N/A
ARM » Cortex-a76ae Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a76ae_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a76ae » Version: N/A
ARM » Cortex-a78c Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a78c_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a78c » Version: N/A
ARM » Cortex-x2 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-x2_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-x2 » Version: N/A
ARM » Cortex-a710 Firmware » Version: N/A
cpe:2.3:o:arm:cortex-a710_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: ARM » Cortex-a710 » Version: N/A
Amperecomputing » Ampere Altra Max Firmware » Version: N/A
cpe:2.3:o:amperecomputing:ampere_altra_max_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Amperecomputing » Ampere Altra Max » Version: N/A
Amperecomputing » Ampere Altra Firmware » Version: N/A
cpe:2.3:o:amperecomputing:ampere_altra_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Amperecomputing » Ampere Altra » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-25368

EPSS FAQ

0.29%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 50 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-25368

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
1.9	LOW	AV:L/AC:M/Au:N/C:P/I:N/A:N	3.4	2.9	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
4.7	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N	1.0	3.6	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

References for CVE-2022-25368

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960

CVE - CVE-2022-23960
Third Party Advisory;VDB Entry
https://amperecomputing.com/products/security-bulletins/impact-of-spectre-bhb-on-ampere.html

Impact of Spectre BHB on Ampere
Vendor Advisory
https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb

Speculative Processor Vulnerability | Spectre-BHB – Arm Developer
Patch;Technical Description;Vendor Advisory

Jump to

Vulnerability Details : CVE-2022-25368

Products affected by CVE-2022-25368

Exploit prediction scoring system (EPSS) score for CVE-2022-25368

CVSS scores for CVE-2022-25368

References for CVE-2022-25368