#VU9883 Information disclosure in Intel CPU

Published: 2020-09-01

Vulnerability identifier: #VU9883

Vulnerability risk: Low


CVE-ID: CVE-2017-5715


Exploitation vector: Local

Exploit availability:

Vulnerable software:
Intel CPU
Hardware solutions / Firmware

Vendor: Intel


The vulnerability allows a local attacker to obtain potentially sensitive information.

The vulnerability exists in Intel CPU hardware due to improper implementation of the speculative execution of instructions. A local attacker can utilize branch target injection, execute arbitrary code, perform a side-channel attack and read sensitive memory information.

Install update from vendor's website.

Vulnerable software versions

Intel CPU: All versions

Fixed software versions


External links

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability