Vulnerability CVE-2018-3640


Published: 2018-05-22

Description:
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.

Type:

CWE-200

(Information Exposure)

Vendor: Intel
Product: Atom z 
Version:
z3795
z3785
z3775d
z3775
z3770d
z3770
z3745d
z3745
z3740d
z3740
z3736g
z3736f
z3735g
z3735f
z3735e
z3735d
z3590
z3580
z3570
z3560
z3530
z3480
z3460
z2760
z2580
z2560
z2520
z2480
z2460
z2420
See more versions on NVD
Product: Xeon e3 
Version:
x5570
x5560
x5550
x3480
x3470
x3460
x3450
x3440
x3430
w5590
w5580
l5530
l5520
l5518_
l5508_
l5506
l3426
l3406
l3403
e6550
e6540
e6510
e5540
e5530
e5520
e5507
e5506
e5504
e5503
e5502
See more versions on NVD
Product: Pentium silver 
Version: n5000; j5005;
Product: Pentium 
Version:
n4200
n4100
n4000
See more versions on NVD
Product: Celeron n 
Version: n3450;
Product: Pentium j 
Version: j4205;
Product: Celeron j 
Version:
j4105
j4005
j3455
See more versions on NVD
Product: Atom e 
Version:
e3845
e3827
e3826
e3825
e3815
e3805
See more versions on NVD
Product: Atom c 
Version:
c3958
c3955
c3950
c3858
c3850
c3830
c3808
c3758
c3750
c3708
c3558
c3538
c3508
c3338
c3308
c2308
See more versions on NVD
Product: Xeon e7 
Version:
8894_v4
8893_v4
8893_v3
8893_v2
8891_v4
8891_v3
8891_v2
8890_v4
See more versions on NVD

CVSS2 => (AV:L/AC:M/Au:N/C:C/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.7/10
6.9/10
3.4/10
Exploit range
Attack complexity
Authentication
Local
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
None
None

 References:
http://support.lenovo.com/us/en/solutions/LEN-22133
http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html
http://www.securityfocus.com/bid/104228
http://www.securitytracker.com/id/1040949
http://www.securitytracker.com/id/1042004
https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf
https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability
https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html
https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180013
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0005
https://security.netapp.com/advisory/ntap-20180521-0001/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel
https://usn.ubuntu.com/3756-1/
https://www.debian.org/security/2018/dsa-4273
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html
https://www.kb.cert.org/vuls/id/180049
https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006
https://www.synology.com/support/security/Synology_SA_18_23
https://www.us-cert.gov/ncas/alerts/TA18-141A

Related CVE
CVE-2019-11184
A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.
CVE-2019-11166
Improper file permissions in the installer for Intel(R) Easy Streaming Wizard before version 2.1.0731 may allow an authenticated user to potentially enable escalation of privilege via local attack.
CVE-2019-11163
Insufficient access control in a hardware abstraction driver for Intel(R) Processor Identification Utility for Windows before version 6.1.0731 may allow an authenticated user to potentially enable escalation of privilege, denial of service or informa...
CVE-2019-11148
Improper permissions in the installer for Intel(R) Remote Displays SDK before version 2.0.1 R2 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2019-11143
Improper permissions in the software installer for Intel(R) Authenticate before 3.8 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2019-11140
Insufficient session validation in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
CVE-2019-0173
Authentication bypass in the web console for Intel(R) Raid Web Console 2 all versions may allow an unauthenticated attacker to potentially enable disclosure of information via network access.
CVE-2019-11129
Out of bound read/write in system firmware for Intel(R) NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Copyright 2019, cxsecurity.com

 

Back to Top