CVE-2022-21151 Processor optimization may allow local access to sensitive information.

CVE-2022-21151 Processor optimization may allow local access to sensitive information.

This issue may occur due to uninitialized variables being set to default values during the installation of software, which may lead to information disclosure if the software does not expect to receive such values. If you are running virtualized environments, make sure that the hypervisor is not providing uninitialized memory to the virtual machine. Information on how to do this can be found on the Intel(R) Enterprise Software Security Center. Information disclosure may also occur when software is installed that was not designed to work with the application or operating system version being used. Information disclosure may occur if the software attempts to access an address that is not defined in the software’s source code. This may occur if the software is compiled against an earlier version of an operating system than the one being used. Information disclosure may also occur if the software is installed against an earlier version of an application than the one being used. Information disclosure may also occur if the software attempts to access an address that is not defined in the software’s source code.

CVE-2023-21152

This issue may occur due to uninitialized variables being set to default values during the installation of software, which may lead to information disclosure if the software does not expect to receive such values. If you are running virtualized environments, make sure that the hypervisor is not providing uninitialized memory to the virtual machine. Information on how to do this can be found on the Intel(R) Enterprise Software Security Center. Information disclosure may also occur when software is installed that was not designed to work with the application or operating system version being used. Information disclosure may occur if the software attempts to access an address that is not defined in the software’s source code. This may occur if the software is compiled against an earlier version of an operating system than the one being used. Information disclosure may also occur if the software is installed against an earlier version of an application than the one being used. Information disclosure may also occur if the software attempts to access an address that is not defined in the software’s source code.

Vulnerability Scoring

: CVE-2022-21151
This vulnerability has a CVSS score of 9.8.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe