Description
A transient execution vulnerability in some AMD processors may allow a user process to infer the control registers speculatively even if UMIP feature is enabled, potentially resulting in information leakage.
Reserved 2024-05-23 | Published 2025-07-08 | Updated 2025-07-08 | Assigner
AMDLOW: 3.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Problem types
CWE-1420 Exposure of Sensitive Information during Transient Execution
Product status
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
Default status
affected
all
affected
References
www.amd.com/...es/product-security/bulletin/amd-sb-7029.html
cve.org (CVE-2024-36348)
nvd.nist.gov (CVE-2024-36348)
Download JSON
