CVE-2023-50559

An issue was discovered in XiangShan v2.1, allows local attackers to obtain sensitive information via the L1D cache.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
VendorProductVersion
openxiangshanxiangshan
2.1
𝑥
= Vulnerable software versions
References
https://gist.github.com/nieeka/5edb552e7cf62cdb18decd9c4292d429
https://github.com/OpenXiangShan/XiangShan/issues/2534
https://gist.github.com/nieeka/5edb552e7cf62cdb18decd9c4292d429
https://github.com/OpenXiangShan/XiangShan/issues/2534