1. Home
  2. Vulnerabilities
  3. CVE-2023-1637

CVE-2023-1637

CVSS v3.1 5.5 (Medium)
55% Progress
EPSS 0.04 % (5th)
0.04% Progress
Affected Products 1
Advisories 23
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks in the Linux kernel X86 CPU Power management options functionality was found in the way user resuming CPU from suspend-to-RAM. A local user could use this flaw to potentially get unauthorized access to some memory of the CPU similar to the speculative execution behavior kind of attacks.

Weaknesses
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
CWE-226
Sensitive Information in Resource Not Removed Before Reuse
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2023-03-27 22:15:21
(17 months ago)
Updated Date
2023-11-07 04:04:26
(10 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 5.18 Rc2 cpe:2.3:o:linux:linux_kernel:5.18:rc2