CVE-2023-1637

MEDIUM Year: 2023
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-226
View all →

Vulnerability Description

A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks in the Linux kernel X86 CPU Power management options functionality was found in the way user resuming CPU from suspend-to-RAM. A local user could use this flaw to potentially get unauthorized access to some memory of the CPU similar to the speculative execution behavior kind of attacks.

Related Vulnerabilities

CVE-2023-3006

MEDIUM
CVSS:5.5(Medium)

A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malici...

CWE-2262023

CVE-2025-48066

MEDIUM
CVSS:5.5(Medium)

wire-webapp is the web application for the open-source messaging service Wire. A bug fix caused a regression causing an issue with function to delete local data. Instructing the client to delete its l...

CWE-2262025

CVE-2024-21850

HIGH
CVSS:6.0(Medium)

Sensitive information in resource not removed before reuse in some Intel(R) TDX Seamldr module software before version 1.5.02.00 may allow a privileged user to potentially enable escalation of privile...

CWE-2262024

CVE-2020-27218

MEDIUM
CVSS:4.8(Medium)

In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients ...

CWE-2262020

CVE-2024-32036

MEDIUM
CVSS:6.5(Medium)

ImageSharp is a 2D graphics API. A data leakage flaw was found in ImageSharp's JPEG and TGA decoders. This vulnerability is triggered when an attacker passes a specially crafted JPEG or TGA image file...

CWE-2262024

CVE-2023-41138

MEDIUM
CVSS:6.7(Medium)

The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process.

CWE-2262023