BranchScope: Unauthorized Information Disclosure via Speculative Execution Side-Channel Attack

BranchScope: Unauthorized Information Disclosure via Speculative Execution Side-Channel Attack

CVE-2018-9056 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:N/A:N

Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table (PHT), aka BranchScope.

Learn more about our User Device Pen Test.