Vulnerabilities Affecting Modern Processors

Abstract: Three vulnerabilities affecting modern Intel®, AMD®, and ARM® processors have been disclosed. CVE-2017-5753 (bounds check bypass) and CVE-2017-5715 (branch target injection), also known as Spectre, have been confirmed to affect Intel, AMD, and ARM processors. CVE-2017-5754 (rogue data cache load), also known as Meltdown, has been confirmed to affect Intel processors. The vulnerabilities could be leveraged to read privileged system memory from an unprivileged context. The vulnerable processors are present in systems widely used across the Department of Defense (DoD). Software patches have been released by vendors to mitigate the hardware vulnerabilities.

Date Published:

Last Reviewed: 05 January 2018

Identifier: U/OO/101375-18

Dissemination Control: N/A

Length: 3 page(s)

Format: pdf

Type: Advisory/Alert; IA Technical Advisory

Tags: Information Assurance Advisory - IAA; Vulnerability; Common Vulnerabilities and Exposures - CVE; Data