SMT Scheduler Contention Side Channel Vulnerability on AMD Zen Microarchitectures

CVE-2021-46778 · MEDIUM Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen 1”, “Zen 2” and “Zen 3” that use simultaneous multithreading (SMT). By measuring the contention level on scheduler queues an attacker may potentially leak sensitive information.

Learn more about our Web Application Penetration Testing UK.