Overview
Modern CPUs have speculative execution capabilities, which improves processor performance. Depending on the design and architecture of the CPU, speculative execution can introduce side-channel-attack vulnerabilities.
Known Vulnerabilities
CVE | Name | CPUs Affected | Trigger | Impact | Mitigations | References |
---|---|---|---|---|---|---|
CVE-2017-5753 | Spectre V1 | Branch prediction bounds check bypass | Cross- and intra-process (including kernel) memory disclosure | OS Compiler Browser | ||
CVE-2017-5715 | Spectre V2 | Branch target injection | Cross- and intra-process (including kernel) memory disclosure | CPU Microcode | ||
CVE-2017-5754 | Meltdown | Intel | Out-of-order execution | Kernel memory disclosure to userspace |