CVE-2018-3640
CVE-2018-3640
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.
Produtos afetados
Intel Corporation · MultipleQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdfhttps://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdfhttps://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerabilityhttps://lists.debian.org/debian-lts-announce/2018/07/msg00038.htmlhttps://lists.debian.org/debian-lts-announce/2018/09/msg00017.htmlhttps://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180013https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0005https://security.netapp.com/advisory/ntap-20180521-0001/https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_ushttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannelhttp://support.lenovo.com/us/en/solutions/LEN-22133https://usn.ubuntu.com/3756-1/