Home > Vulnerability Database > CVE-2021-46778

Mend.io Vulnerability Database

CVE-2021-46778

Date: August 10, 2022

Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen 1”, “Zen 2” and “Zen 3” that use simultaneous multithreading (SMT). By measuring the contention level on scheduler queues an attacker may potentially leak sensitive information.

Severity Score

5.6

Related Resources (4)

Url: https://nvd.nist.gov/vuln/detail/CVE-2021-46778

Url: https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1039

Url: https://access.redhat.com/security/cve/CVE-2021-46778

Url: https://www.mend.io/vulnerability-database/CVE-2021-46778

Severity Score

5.6

Weakness Type (CWE)

Observable Discrepancy

CWE-203

CVSS v3.1

Base Score:	5.6
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2021-46778

Date: August 10, 2022

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?