CVE-2017-5753
CVE-2017-5753
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Produtos afetados
Intel Corporation · Most Modern Operating SystemsPoCs públicas encontradas — 10
githubgithub.com/Eugnis/spectre-attack★ 770githubgithub.com/00052/spectre-attack-example★ 12githubgithub.com/ixtal23/spectreScope★ 7githubgithub.com/EdwardOwusuAdjei/Spectre-PoC★ 4githubgithub.com/albertleecn/cve-2017-5753★ 1githubgithub.com/pedrolucasoliva/spectre-attack-demo★ 1githubgithub.com/sachinthaBS/Spectre-Vulnerability-CVE-2017-5753-★ 0exploitdbwww.exploit-db.com/exploits/43427não verificadocve_referencewww.exploit-db.com/exploits/43427/não verificadocve_referencepacketstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.htmlnão verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00008.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00014.htmlhttp://lists.opensuse.org/opensuse-security-announce/2018-01/msg00016.htmlhttp://nvidia.custhelp.com/app/answers/detail/a_id/4609http://nvidia.custhelp.com/app/answers/detail/a_id/4611http://nvidia.custhelp.com/app/answers/detail/a_id/4613http://nvidia.custhelp.com/app/answers/detail/a_id/4614http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.htmlhttps://access.redhat.com/errata/RHSA-2018:0292https://access.redhat.com/security/vulnerabilities/speculativeexecution