[Forgot Password]
Login  Register Subscribe

24547

 
 

132804

 
 

129935

 
 

909

 
 

106980

 
 

152

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2018-12130Date: (C)null   (M)2019-09-17


Microarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 5.6CVSS Score : 4.7
Exploit Score: 1.1Exploit Score: 3.4
Impact Score: 4.0Impact Score: 6.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: LOCALAccess Vector: LOCAL
Attack Complexity: HIGHAccess Complexity: MEDIUM
Privileges Required: LOWAuthentication: NONE
User Interaction: NONEConfidentiality: COMPLETE
Scope: CHANGEDIntegrity: NONE
Confidentiality: HIGHAvailability: NONE
Integrity: NONE 
Availability: NONE 
  
Reference:
https://seclists.org/bugtraq/2019/Jun/28
https://seclists.org/bugtraq/2019/Jun/36
FEDORA-2019-1f5832fc0e
FreeBSD-SA-19:07
RHSA-2019:1455
USN-3977-3
https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en
https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html
openSUSE-SU-2019:1505
openSUSE-SU-2019:1805
openSUSE-SU-2019:1806

CWE    1
CWE-200
OVAL    81
oval:org.secpod.oval:def:116627
oval:org.secpod.oval:def:116625
oval:org.secpod.oval:def:116623
oval:org.secpod.oval:def:55021
...

© SecPod Technologies