CVE-2018-3640

Advisory lineage Upstream: 0 Downstream: 16

Downstream

DEBIAN-CVE-2018-3640 DLA-1446-1 DSA-4273-1 DSA-4273-2 MGASA-2018-0322 OPENSUSE-SU-2024:11478-1

Modified

Published: 22 May 2018, 12:00

Last modified:16 Sept 2024, 19:31

Vulnerability Summary

Overall Risk (default)

low

23/100

CVSS Score

5.6 MEDIUM

v3.0 (nvd)

EPSS Score

1.56% LOW

2% probability +0.66%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

22 May 2018, 12:00

Published

Vulnerability first disclosed

16 Sept 2024, 19:31

Last Modified

Vulnerability information updated

Description

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.

CVSS Metrics

v3.0•MEDIUM•Score: 5.6CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
v2.0•MEDIUM•Score: 4.7AV:L/AC:M/Au:N/C:C/I:N/A:N

EPSS Trends

Current EPSS score: 1.56%• Percentile: 82%

Techniques & Countermeasures

CWE-203•Observable Discrepancy
The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.

Affected Systems

arm•cortex-a
15 | 57 | 72
intel corporation•multiple
Multiple
intel•atom_c
c2308 | c3308 | c3338 | c3508 | c3538 | c3558 | c3708 | c3750 | c3758 | c3808 | c3830 | c3850 | c3858 | c3950 | c3955 | c3958
intel•atom_e
e3805 | e3815 | e3825 | e3826 | e3827 | e3845
intel•atom_z
z2420 | z2460 | z2480 | z2520 | z2560 | z2580 | z2760 | z3460 | z3480 | z3530 | z3560 | z3570 | z3580 | z3590 | z3735d | z3735e | z3735f | z3735g | z3736f | z3736g | z3740 | z3740d | z3745 | z3745d | z3770 | z3770d | z3775 | z3775d | z3785 | z3795
intel•celeron_j
j3455 | j4005 | j4105
intel•celeron_n
n3450
intel•core_i3
32nm | 45nm
intel•core_i5
32nm | 45nm
intel•core_i7
32nm | 45nm
intel•core_m
32nm | 45nm
intel•pentium
n4000 | n4100 | n4200
intel•pentium_j
j4205
intel•pentium_silver
j5005 | n5000
intel•xeon_e-1105c
na
intel•xeon_e3
125c_ | 1220_ | 1275_ | 1505m_v6 | 1515m_v5 | 1535m_v5 | 1535m_v6 | 1545m_v5 | 1558l_v5 | 1565l_v5 | 1575m_v5 | 1578l_v5 | 1585_v5 | 1585l_v5 | 3600 | 5600 | 7500 | e5502 | e5503 | e5504 | e5506 | e5507 | e5520 | e5530 | e5540 | e6510 | e6540 | e6550 | l3403 | l3406 | l3426 | l5506 | l5508_ | l5518_ | l5520 | l5530 | w5580 | w5590 | x3430 | x3440 | x3450 | x3460 | x3470 | x3480 | x5550 | x5560 | x5570
intel•xeon_e3_1105c_v2
na
intel•xeon_e3_1125c_v2
na
intel•xeon_e3_1220_v2
na
intel•xeon_e3_1220_v3
na
intel•xeon_e3_1220_v5
na
intel•xeon_e3_1220_v6
na
intel•xeon_e3_12201
na
intel•xeon_e3_12201_v2
na
intel•xeon_e3_1220l_v3
na
intel•xeon_e3_1225
na
intel•xeon_e3_1225_v2
na
intel•xeon_e3_1225_v3
na
intel•xeon_e3_1225_v5
na
intel•xeon_e3_1225_v6
na
intel•xeon_e3_1226_v3
na
intel•xeon_e3_1230
na
intel•xeon_e3_1230_v2
na
intel•xeon_e3_1230_v3
na
intel•xeon_e3_1230_v5
na
intel•xeon_e3_1230_v6
na
intel•xeon_e3_1230l_v3
na
intel•xeon_e3_1231_v3
na
intel•xeon_e3_1235
na
intel•xeon_e3_1235l_v5
na
intel•xeon_e3_1240
na
intel•xeon_e3_1240_v2
na
intel•xeon_e3_1240_v3
na
intel•xeon_e3_1240_v5
na
intel•xeon_e3_1240_v6
na
intel•xeon_e3_1240l_v3
na
intel•xeon_e3_1240l_v5
na
intel•xeon_e3_1241_v3
na
intel•xeon_e3_1245
na
intel•xeon_e3_1245_v2
na

Showing first 50 affected entries in server-rendered view.