[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2018-12207Date: (C)2019-11-15   (M)2024-04-30


Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 6.5CVSS Score : 4.9
Exploit Score: 2.0Exploit Score: 3.9
Impact Score: 4.0Impact Score: 6.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: LOCALAccess Vector: LOCAL
Attack Complexity: LOWAccess Complexity: LOW
Privileges Required: LOWAuthentication: NONE
User Interaction: NONEConfidentiality: NONE
Scope: CHANGEDIntegrity: NONE
Confidentiality: NONEAvailability: COMPLETE
Integrity: NONE 
Availability: HIGH 
  
Reference:
https://seclists.org/bugtraq/2020/Jan/21
DSA-4602
FEDORA-2019-376ec5c107
FEDORA-2019-cbb732f760
GLSA-202003-56
RHSA-2019:3916
RHSA-2019:3936
RHSA-2019:3941
RHSA-2020:0026
RHSA-2020:0028
RHSA-2020:0204
USN-4186-2
https://support.f5.com/csp/article/K17269881?utm_source=f5support&%3Butm_medium=RSS
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00210.html
https://www.oracle.com/security-alerts/cpujul2020.html
openSUSE-SU-2019:2710

CPE    353
cpe:/h:intel:core_i7-5550u:-
cpe:/h:intel:xeon_e7540:-
cpe:/o:intel:core_i5-7500t_firmware:-
cpe:/h:intel:xeon_e5-4640_v4:-
...
CWE    1
CWE-20
OVAL    83
oval:org.secpod.oval:def:89043843
oval:org.secpod.oval:def:117418
oval:org.secpod.oval:def:117415
oval:org.secpod.oval:def:117413
...

© SecPod Technologies