CVE-2020-12912

ADVISORY - nist

Summary

A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated the RAPL interface to require privileged access.

EPSS Score⁠: 0.00044 (0.141)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-203⁠

Observable Discrepancy

ADVISORY - redhat

CWE-266⁠

Incorrect Privilege Assignment

CWE-276⁠

Incorrect Default Permissions

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.