Athlon X4 750 Firmware
CVE-2022-23823
MEDIUM
Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure.
AnalysisAI
A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-203. A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure. Affected products include: Amd Athlon X4 750 Firmware, Amd Athlon X4 760K Firmware, Amd Athlon X4 830 Firmware, Amd Athlon X4 835 Firmware, Amd Athlon X4 840 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Athlon X4 750 Firmware
View allAliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to in
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain micr
IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential in
When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling threa
Same weakness CWE-203 – Observable Discrepancy
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today