---

CVE-2020-0548 - log back

CVE-2020-0548 edited at 09 Jun 2020 20:05:22
Severity	- Unknown + Low
Remote	- Unknown + Local
Type	- Unknown + Information disclosure
Description	+ A flaw was found in Intel processors where a local attacker is able to gain information about registers used for vector calculations by observing register states from other processes running on the system. This results in a race condition where store buffers, which were not cleared, could be read by another process or a CPU sibling. The highest threat from this vulnerability is data confidentiality where an attacker could read arbitrary data as it passes through the processor.
References	+ https://cacheoutattack.com/CacheOut.pdf + https://software.intel.com/security-software-guidance/software-guidance/l1d-eviction-sampling + https://blogs.intel.com/technology/2020/01/ipas-intel-sa-00329/
Notes

CVE-2020-0548 created at 09 Jun 2020 19:49:26