CVE-2018-3646

MEDIUM

Speculative Execution - Info Disclosure

Title source: llm

Description

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.

References (56)

Core 56

Core References

Vendor Advisory x_refsource_confirm

https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf

Vendor Advisory x_refsource_confirm

https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf

Vendor Advisory x_refsource_confirm

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018

Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn

https://www.kb.cert.org/vuls/id/982149

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1041451

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201810-06

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3741-2/

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2393

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3823-1/

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2389

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2390

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2403

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/105080

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2395

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2384

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3740-2/

Third Party Advisory vendor-advisory x_refsource_freebsd

https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2018/dsa-4274

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2388

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3741-1/

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2603

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2402

Third Party Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3742-2/

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2404

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3740-1/

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2391

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2396

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2018/dsa-4279

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2392

Mailing List mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3742-1/

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2602

Mailing List mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2394

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2387

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3756-1/

Vendor Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpujul2020.html

Vendor Advisory x_refsource_confirm

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

Vendor Advisory x_refsource_misc

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Various Sources x_refsource_confirm

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

Third Party Advisory x_refsource_confirm

http://xenbits.xen.org/xsa/advisory-273.html

Technical Description, Third Party Advisory x_refsource_misc

https://foreshadowattack.eu/

Third Party Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20180815-0001/

Third Party Advisory x_refsource_confirm

http://support.lenovo.com/us/en/solutions/LEN-24163

Third Party Advisory x_refsource_confirm

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en

Vendor Advisory x_refsource_confirm

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html

Third Party Advisory x_refsource_confirm

https://www.synology.com/support/security/Synology_SA_18_45

Third Party Advisory x_refsource_confirm

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us

Mitigation, Vendor Advisory x_refsource_confirm

https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault

Third Party Advisory x_refsource_confirm

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0010

Third Party Advisory x_refsource_confirm

http://www.vmware.com/security/advisories/VMSA-2018-0020.html

Third Party Advisory x_refsource_confirm

https://support.f5.com/csp/article/K31300402

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1042004

Scores

CVSS v3 5.6

EPSS 0.0388

EPSS Percentile 88.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Details

Status published

Products (50)

intel/core_i3 330e

intel/core_i3 330m

intel/core_i3 330um

intel/core_i3 350m

intel/core_i3 370m

intel/core_i3 380m

intel/core_i3 380um

intel/core_i3 390m

intel/core_i3 530

intel/core_i3 540

... and 40 more

Published Aug 14, 2018

Tracked Since Feb 18, 2026