mmxsrup

2 exploits Active since May 2018
CVE-2018-3639 NOMISEC MEDIUM WORKING POC
Intel Atom C/E/X5/X7/Z - Information Disclosure via Speculative Store Bypass
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.
15 stars
CVSS 5.5
CVE-2019-5489 NOMISEC MEDIUM WORKING POC
Linux Kernel < 4.19.13 - Information Disclosure via mincore() Page Cache Access
The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allowing sniffing of secret information. (Fixing this affects the output of the fincore program.) Limited remote exploitation may be possible, as demonstrated by latency differences in accessing public files from an Apache HTTP Server.
9 stars
CVSS 5.5