VYPR
High severity7.5NVD Advisory· Published Aug 17, 2020· Updated Jun 17, 2026

CVE-2020-1459

CVE-2020-1459

Description

An information disclosure vulnerability exists on ARM implementations that use speculative execution in control flow via a side-channel analysis, aka "straight-line speculation." To exploit this vulnerability, an attacker with local privileges would need to run a specially crafted application. The security update addresses the vulnerability by bypassing the speculative execution.

Affected products

4
  • cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*+ 1 more
    • cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*range: 10.0.0
    • cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*range: 10.0.0
  • cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*
    Range: 10.0.0
  • Microsoft/ARMllm-create

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.