CVE-2024-2193
MEDIUM5.7EPSS 0.90%發布日:2024/3/15修改日:2025/12/3
也稱為:ALPINE-CVE-2024-2193
描述
A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures supporting speculative execution (related to Spectre V1) has been disclosed. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the speculative executable code paths.
受影響套件(3)
- Alpine/xenfrom 0, < 4.16.5-r7
- Debian/linuxfrom 0
- Debian/xenfrom 0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.7 | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N |