Amperecomputing: >> Ampere Altra Firmware >> 1.09 Security Vulnerabilities
In Ampere AltraMax and Ampere Altra before 2.10c, improper access controls allows the OS to reinitialize a disabled root complex.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-02-15
Ampere Altra and Ampere Altra Max devices through 2022-07-15 allow attacks via Hertzbleed, which is a power side-channel attack that extracts secret information from the CPU by correlating the power consumption with data being processed on the system.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-09-29