CVE-2020-12912

SOURCE - nist

Summary

A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated the RAPL interface to require privileged access.

EPSS Score⁠: 0.00044 (0.117)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-203⁠

Observable Discrepancy

SOURCE - redhat

CWE-266⁠

Incorrect Privilege Assignment

CWE-276⁠

Incorrect Default Permissions

Sources (4)

nist

CREATED

3 years ago

UPDATED

3 years ago

SOURCE IDCVE-2020-12912⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

5.5medium

debian

CREATED

3 years ago

UPDATED

7 months ago

SOURCE IDCVE-2020-12912⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

ubuntu

CREATED

3 years ago

UPDATED

15 days ago

SOURCE IDCVE-2020-12912⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.5low

redhat

CREATED

3 years ago

UPDATED

10 months ago

SOURCE IDCVE-2020-12912⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CWE-266⁠CWE-276⁠

CVSS SCORE

5.5medium