cve-2017-5715

About this tag
CVE-2017-5715, also known as Spectre Variant 2 or Branch Target Injection, is a CPU hardware vulnerability that allows side-channel attacks to access sensitive information. This tag covers discussions about the vulnerability, including Intel microcode updates released to mitigate it, such as KB4090007 for Windows 10. It also includes broader topics like the TA18-141A advisory on related variants 3a and 4, and Microsoft's speculative execution bounty program encouraging research into these vulnerabilities. Content focuses on enterprise IT security, Windows updates, and hardware-level fixes.
  1. News

    TA18-141A: Side-Channel Vulnerability Variants 3a and 4

    Original release date: May 21, 2018 Systems Affected CPU hardware implementations Overview On May 21, 2018, new variants—known as 3A and 4—of the side-channel central processing unit (CPU) hardware vulnerability were Link Removed. These variants can allow an attacker to obtain access to...
  2. News

    Speculative Execution Bounty Launch

    Today, Microsoft is announcing the launch of a limited-time bounty program for speculative execution side channel vulnerabilities. This new class of vulnerabilities was disclosed in January 2018 and represented a major advancement in the research in this field. In recognition of that threat...
  3. kemical

    KB4090007: Intel microcode updates

    Intel release updates for Spectre on 6th generation (Skylake) chips: Intel Link Removed that they have completed their validations and started to release microcode for newer CPU platforms around Spectre Variant 2 (CVE 2017-5715 (“Branch Target Injection”)). This update includes microcode...
Back
Top