[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2018-3693Date: (C)2018-07-11   (M)2024-02-22


Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 5.6CVSS Score : 4.7
Exploit Score: 1.1Exploit Score: 3.4
Impact Score: 4.0Impact Score: 6.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: LOCALAccess Vector: LOCAL
Attack Complexity: HIGHAccess Complexity: MEDIUM
Privileges Required: LOWAuthentication: NONE
User Interaction: NONEConfidentiality: COMPLETE
Scope: CHANGEDIntegrity: NONE
Confidentiality: HIGHAvailability: NONE
Integrity: NONE 
Availability: NONE 
  
Reference:
RHSA-2018:2384
RHSA-2018:2390
RHSA-2018:2395
RHSA-2019:1946
RHSA-2020:0174
https://01.org/security/advisories/intel-oss-10002
https://cdrdv2.intel.com/v1/dl/getContent/685359
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
https://security.netapp.com/advisory/ntap-20180823-0001/
https://thehackernews.com/2018/07/intel-spectre-vulnerability.html
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
https://www.suse.com/support/kb/doc/?id=7023075

CPE    1072
cpe:/h:intel:core_i5:3330
cpe:/h:intel:core_i5:3570
cpe:/h:intel:core_i5:4440s
cpe:/h:intel:xeon:x5647
...
OVAL    12
oval:org.secpod.oval:def:46444
oval:org.secpod.oval:def:46446
oval:org.secpod.oval:def:46445
oval:org.secpod.oval:def:1502292
...

© SecPod Technologies