Back to search
CVE-2018-3615
Published: Aug 14, 2018
Modified: May 29, 2026
PUBLISHED
Description
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
| Vendor | Product | Versions |
|---|---|---|
Intel Corporation | Multiple | affected Multiple |
References
VU#982149
third-party-advisory
x_refsource_CERT-VN
1041451
vdb-entry
x_refsource_SECTRACK
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0008
x_refsource_CONFIRM
105080
vdb-entry
x_refsource_BID
https://foreshadowattack.eu/
x_refsource_MISC
https://security.netapp.com/advisory/ntap-20180815-0001/
x_refsource_CONFIRM
20180814 CPU Side-Channel Information Disclosure Vulnerabilities: August 2018
vendor-advisory
x_refsource_CISCO
https://support.f5.com/csp/article/K35558453
x_refsource_CONFIRM
http://support.lenovo.com/us/en/solutions/LEN-24163
x_refsource_CONFIRM
https://www.synology.com/support/security/Synology_SA_18_45
x_refsource_CONFIRM
[debian-lts-announce] 20180916 [SECURITY] [DLA 1506-1] intel-microcode security update
mailing-list
x_refsource_MLIST
https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf
x_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now