CVE-2017-5715
CVE-2017-5715
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Produtos afetados
Intel Corporation · Microprocessors with Speculative ExecutionPoCs públicas encontradas — 8
githubgithub.com/opsxcq/exploit-cve-2017-5715★ 54githubgithub.com/mathse/meltdown-spectre-bios-list★ 17githubgithub.com/GregAskew/SpeculativeExecutionAssessment★ 0githubgithub.com/GalloLuigi/Analisi-CVE-2017-5715★ 0exploitdbwww.exploit-db.com/exploits/43427não verificadocve_referencepacketstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.htmlnão verificadocve_referencewww.exploit-db.com/exploits/43427/não verificadocve_referencepacketstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.htmlnão verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00008.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00014.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00016.html