CacheOut, a New Speculative Execution Vulnerability A...

Question

CacheOut, a New Speculative Execution VulnerabilityA research paper detailing a new speculative execution vulnerability called CacheOut was published today, but the difference with CacheOut is that the attacker could select the data they’re looking for rather than collecting everything from a CPU’s cache.While this vulnerability is impressive, the complexity and effectiveness required  diminishes the likelihood and feasibility of an attack.Intel has released an advisory for the CVEs associated CacheOut (CVE-2020-0549 and CVE-2020-0548). Intel has given CacheOut a CVSS rating of 6.5 (Medium).Tenable expects similar vendor response with patches and updates like we saw with ZombieLoad, and we will likely have detection plugins available after OS vendors have released their patches.

fajah · Answer

Thanks @Ryan Seguin​&nbsp;

Vulnerability Watch

Forum Discussion

CacheOut, a New Speculative Execution Vulnerability A...

1 Reply

Recent Discussions

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Vulnerability

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

CVE-2025-14847 (MongoBleed): MongoDB Memory Leak Vulnerability Exploited in the Wild

CVE-2025-40602: SonicWall Secure Mobile Access (SMA) 1000 Zero-Day Exploited

Microsoft Patch Tuesday 2025 Year in Review

Americas

Europe

Asia / Australia