Home

CVE-2022-23825

Description

Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.138

Associated Vulnerability

VulnerabilityOS Platform
Windows Kernel Information Disclosure Vulnerability for Microsoft server operating system version 21H2 for x64-based Systems (KB5015827) (CVE-2022-22047)Windows
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-debugsource-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-doc-html-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-libs-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-libs-32bit-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-libs-debuginfo-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-libs-debuginfo-32bit-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-tools-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-tools-debuginfo-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-tools-domU-4.12.4_26-3.74.1.x86_64.rpmLinux
SUSE-SU-2022:2557-1(SUSE Linux Enterprise Server 12-SP5 ) xen-tools-domU-debuginfo-4.12.4_26-3.74.1.x86_64.rpmLinux
Bpftool update (ELSA-2022-7110) bpftool-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel update (ELSA-2022-7110) kernel-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-abi-stablelists update (ELSA-2022-7110) kernel-abi-stablelists-4.18.0-372.32.1.0.1.el8_6.noarch.rpmLinux
Kernel-core update (ELSA-2022-7110) kernel-core-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-cross-headers update (ELSA-2022-7110) kernel-cross-headers-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-debug update (ELSA-2022-7110) kernel-debug-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-debug-core update (ELSA-2022-7110) kernel-debug-core-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-debug-devel update (ELSA-2022-7110) kernel-debug-devel-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-debug-modules update (ELSA-2022-7110) kernel-debug-modules-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-debug-modules-extra update (ELSA-2022-7110) kernel-debug-modules-extra-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-devel update (ELSA-2022-7110) kernel-devel-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-doc update (ELSA-2022-7110) kernel-doc-4.18.0-372.32.1.0.1.el8_6.noarch.rpmLinux
Kernel-headers update (ELSA-2022-7110) kernel-headers-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-modules update (ELSA-2022-7110) kernel-modules-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-modules-extra update (ELSA-2022-7110) kernel-modules-extra-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-tools update (ELSA-2022-7110) kernel-tools-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-tools-libs update (ELSA-2022-7110) kernel-tools-libs-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Kernel-tools-libs-devel update (ELSA-2022-7110) kernel-tools-libs-devel-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Perf update (ELSA-2022-7110) perf-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Python3-perf update (ELSA-2022-7110) python3-perf-4.18.0-372.32.1.0.1.el8_6.x86_64.rpmLinux
Bpftool update (ELSA-2022-7337) bpftool-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel update (ELSA-2022-7337) kernel-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-abi-whitelists update (ELSA-2022-7337) kernel-abi-whitelists-3.10.0-1160.80.1.0.1.el7.noarch.rpmLinux
Kernel-debug update (ELSA-2022-7337) kernel-debug-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-debug-devel update (ELSA-2022-7337) kernel-debug-devel-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-devel update (ELSA-2022-7337) kernel-devel-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-doc update (ELSA-2022-7337) kernel-doc-3.10.0-1160.80.1.0.1.el7.noarch.rpmLinux
Kernel-headers update (ELSA-2022-7337) kernel-headers-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-tools update (ELSA-2022-7337) kernel-tools-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-tools-libs update (ELSA-2022-7337) kernel-tools-libs-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Kernel-tools-libs-devel update (ELSA-2022-7337) kernel-tools-libs-devel-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Perf update (ELSA-2022-7337) perf-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
Python-perf update (ELSA-2022-7337) python-perf-3.10.0-1160.80.1.0.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update bpftool-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-abi-whitelists-3.10.0-1160.80.1.el7.noarch.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-debug-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-debug-devel-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-devel-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-doc-3.10.0-1160.80.1.el7.noarch.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-headers-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-tools-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-tools-libs-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update perf-3.10.0-1160.80.1.el7.x86_64.rpmLinux
(RHSA-2022:7337) kernel security and bug fix update python-perf-3.10.0-1160.80.1.el7.x86_64.rpmLinux
SUSE-SU-2022:2599-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) xen-libs-4.14.5_04-150300.3.32.1.x86_64.rpmLinux
SUSE-SU-2022:2599-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) xen-tools-domU-4.14.5_04-150300.3.32.1.x86_64.rpmLinux
kernel Security Update (ALAS-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) bpftool-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) python3-perf-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) perf-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-devel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-headers-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-libbpf-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-libbpf-devel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-libbpf-static-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-tools-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-tools-devel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-23825)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-340892022-07 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5015827) (CVE-2022-22047)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234