CVE-2022-40982

Updated: 2023-11-07 19:47:00.692354

Description:

Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 6.5

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 6.5 MEDIUM Needs Triage 2023-11-21 10:09:16
AlmaLinux 9.2 ESU microcode_ctl 20220809 6.5 MEDIUM Not Vulnerable 2023-12-01 08:35:52
AlmaLinux 9.2 FIPS kernel 5.14.0 6.5 MEDIUM Ignored 2023-11-21 04:11:43
CentOS 6 ELS kernel 2.6.32 6.5 MEDIUM Ignored 2023-10-09 05:07:35
CentOS 6 ELS microcode_ctl 1.17-33.29 6.5 MEDIUM Released CLSA-2023:1693410662 2023-09-13 09:29:22
CentOS 7 ELS microcode_ctl 2.1 6.5 MEDIUM Released CLSA-2023:1701444720 2023-12-01 13:14:20
CentOS 8.4 ELS kernel 4.18.0 6.5 MEDIUM Ignored 2023-10-09 05:07:35
CentOS 8.4 ELS microcode_ctl 20210216-1 6.5 MEDIUM Ignored 2023-08-16 03:40:51
CentOS 8.5 ELS kernel 4.18.0 6.5 MEDIUM Ignored 2023-10-09 05:07:35
CentOS 8.5 ELS microcode_ctl 20210608-1 6.5 MEDIUM Ignored 2023-08-16 03:40:51
Total: 19