A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.
Published: 2024-12-19
Updated: 2025-01-09
Named Vulnerability: Spectre v2Named Vulnerability: Native BHI
Base Score: 4
Vector: CVSS2#AV:L/AC:H/Au:N/C:C/I:N/A:N
Severity: Medium
Base Score: 4.7
Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity: Medium
EPSS: 0.00021