CVE-2017-5754

MEDIUM

Intel Atom C/E/X3 - Unauthorized Information Disclosure via Speculative Execution Side-Channel

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 8 public exploits for CVE-2017-5754. PoCs published by qazbnm456, ionescu007, raphaelsc.

AI-analyzed exploit summary This repository provides a curated list of references and PoC links for CVE-2017-5754 (Meltdown), a side-channel vulnerability allowing unauthorized memory reads from kernel space. It includes academic papers, exploit repositories, and technical analyses but does not contain direct exploit code.

Description

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

Exploits (8)

github WRITEUP 3,480 stars
by qazbnm456 · poc
https://github.com/qazbnm456/awesome-cve-poc/tree/master/CVE-2017-5754.md

This repository provides a curated list of references and PoC links for CVE-2017-5754 (Meltdown), a side-channel vulnerability allowing unauthorized memory reads from kernel space. It includes academic papers, exploit repositories, and technical analyses but does not contain direct exploit code.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Complex
Reliability
Theoretical
Target: Intel x86 processors (and some ARM/AMD)
No auth needed
Prerequisites: Vulnerable CPU with speculative execution · Local user access
devstral-2 · analyzed Feb 27, 2026 Full analysis →
nomisec SCANNER 584 stars
by ionescu007 · poc
https://github.com/ionescu007/SpecuCheck

SpecuCheck is a Windows utility that queries the system for mitigation status against speculative execution vulnerabilities (e.g., Meltdown, Spectre) using undocumented NtQuerySystemInformation API calls. It does not exploit vulnerabilities but checks for patch presence and mitigation states.

Classification
Scanner 100%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Windows 7 SP1 and later
No auth needed
Prerequisites: Access to a Windows system with administrative privileges to query system information
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 543 stars
by raphaelsc · poc
https://github.com/raphaelsc/Am-I-affected-by-Meltdown

This repository contains a proof-of-concept exploit for CVE-2017-5754 (Meltdown), which checks if a Linux system is vulnerable by comparing system call addresses obtained via the Meltdown exploit with those listed in /proc/kallsyms.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Linux kernel (unpatched versions vulnerable to Meltdown)
No auth needed
Prerequisites: Access to /proc/kallsyms · Linux environment · Unpatched kernel vulnerable to Meltdown
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec SCANNER 94 stars
by Viralmaniar · poc
https://github.com/Viralmaniar/In-Spectre-Meltdown

This repository contains a Python script that checks for speculative execution side-channel vulnerabilities (CVE-2017-5754 and CVE-2017-5715) by leveraging PowerShell commands to inspect system settings. It does not exploit the vulnerabilities but scans for their presence.

Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Windows systems with vulnerable CPUs
Auth required
Prerequisites: Administrator privileges · Windows OS · PowerShell 5.1 · Python 3.6.3
devstral-2 · analyzed Feb 16, 2026 Full analysis →
github WRITEUP 14 stars
by xbl3 · poc
https://github.com/xbl3/awesome-cve-poc_qazbnm456/tree/master/CVE-2017-5754.md

This repository provides a detailed writeup and references for CVE-2017-5754 (Meltdown), including links to functional PoCs and technical analyses. It does not contain direct exploit code but offers comprehensive resources for understanding the vulnerability.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Complex
Reliability
Theoretical
Target: Intel x86 processors (kernel memory)
No auth needed
Prerequisites: Vulnerable Intel CPU · Local access to the system
devstral-2 · analyzed Feb 27, 2026 Full analysis →
nomisec WORKING POC 2 stars
by zzado · poc
https://github.com/zzado/Meltdown

This repository contains a proof-of-concept exploit for CVE-2017-5754 (Meltdown), demonstrating speculative execution side-channel attacks to leak kernel memory. The code includes cache timing techniques and speculative execution triggers to read arbitrary memory addresses.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Complex
Reliability
Reliable
Target: Linux kernel (x86-64)
No auth needed
Prerequisites: x86-64 architecture · unpatched Linux kernel vulnerable to Meltdown
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec SCANNER 1 stars
by jdmulloy · poc
https://github.com/jdmulloy/meltdown-aws-scanner

This is a shell script that scans AWS EC2 instances to determine if they have been patched against Meltdown (CVE-2017-5754) by checking console output for specific kernel strings. It does not exploit the vulnerability but verifies patch status.

Classification
Scanner 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: AWS EC2 instances running Linux kernels vulnerable to CVE-2017-5754
Auth required
Prerequisites: AWS CLI configured with valid credentials · Access to EC2 instances
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by speecyy · poc
https://github.com/speecyy/Am-I-affected-by-Meltdown

This repository contains a proof-of-concept exploit for CVE-2017-5754 (Meltdown) that checks if a Linux system is vulnerable by comparing system call addresses obtained via the Meltdown exploit with those listed in /proc/kallsyms.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Linux kernel (unpatched against Meltdown)
No auth needed
Prerequisites: Access to /proc/kallsyms · Kernel symbols not restricted (kptr_restrict=0)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (66)

Core 66
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/usn/usn-3525-1/
Third Party Advisory x_refsource_confirm
http://nvidia.custhelp.com/app/answers/detail/a_id/4609
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3523-1/
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201810-06
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2018/dsa-4082
Vendor Advisory x_refsource_confirm
https://support.citrix.com/article/CTX234679
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3540-2/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3522-3/
Mailing List mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/01/msg00004.html
Patch, Third Party Advisory, Vendor Advisory x_refsource_confirm
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3597-1/
Vendor Advisory x_refsource_confirm
http://nvidia.custhelp.com/app/answers/detail/a_id/4611
Various Sources x_refsource_confirm
https://cert.vde.com/en-us/advisories/vde-2018-002
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2018/dsa-4120
Third Party Advisory x_refsource_confirm
https://support.f5.com/csp/article/K91229003
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/usn/usn-3524-2/
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2018/dsa-4078
Vendor Advisory x_refsource_confirm
https://source.android.com/security/bulletin/2018-04-01
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0292
Third Party Advisory x_refsource_confirm
http://xenbits.xen.org/xsa/advisory-254.html
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20180104-0001/
Third Party Advisory x_refsource_confirm
https://www.synology.com/support/security/Synology_SA_18_01
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/584653
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/usn/usn-3522-2/
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
https://www.kb.cert.org/vuls/id/180049
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3583-1/
Various Sources x_refsource_confirm
https://cert.vde.com/en-us/advisories/vde-2018-003
Vendor Advisory x_refsource_confirm
https://support.citrix.com/article/CTX231399
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/102378
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/106128
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1040071
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3597-2/
Vendor Advisory x_refsource_confirm
http://nvidia.custhelp.com/app/answers/detail/a_id/4614
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/usn/usn-3523-2/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/usn/usn-3516-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3541-2/
Third Party Advisory x_refsource_confirm
https://support.lenovo.com/us/en/solutions/LEN-18282
Technical Description, Third Party Advisory x_refsource_misc
https://meltdownattack.com/
Vendor Advisory x_refsource_confirm
http://nvidia.custhelp.com/app/answers/detail/a_id/4613
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3522-4/
Various Sources x_refsource_confirm
https://cdrdv2.intel.com/v1/dl/getContent/685358

Scores

CVSS v3 5.6
EPSS 0.8417
EPSS Percentile 99.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-200
Status published
Products (50)
arm/cortex-a 75
intel/atom_c c2308
intel/atom_c c2316
intel/atom_c c2338
intel/atom_c c2350
intel/atom_c c2358
intel/atom_c c2508
intel/atom_c c2516
intel/atom_c c2518
intel/atom_c c2530
... and 40 more
Published Jan 04, 2018
Tracked Since Feb 18, 2026