Back to search
CVE-2018-3646
Published: Aug 14, 2018
Modified: May 29, 2026
PUBLISHED
Description
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.
| Vendor | Product | Versions |
|---|---|---|
Intel Corporation | Multiple | affected Multiple |
References
VU#982149
third-party-advisory
x_refsource_CERT-VN
1041451
vdb-entry
x_refsource_SECTRACK
GLSA-201810-06
vendor-advisory
x_refsource_GENTOO
USN-3741-2
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:2393
vendor-advisory
x_refsource_REDHAT
USN-3823-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:2389
vendor-advisory
x_refsource_REDHAT
1042004
vdb-entry
x_refsource_SECTRACK
RHSA-2018:2390
vendor-advisory
x_refsource_REDHAT
RHSA-2018:2403
vendor-advisory
x_refsource_REDHAT
105080
vdb-entry
x_refsource_BID
RHSA-2018:2395
vendor-advisory
x_refsource_REDHAT
RHSA-2018:2384
vendor-advisory
x_refsource_REDHAT
USN-3740-2
vendor-advisory
x_refsource_UBUNTU
FreeBSD-SA-18:09
vendor-advisory
x_refsource_FREEBSD
DSA-4274
vendor-advisory
x_refsource_DEBIAN
FEDORA-2018-1c80fea1cd
vendor-advisory
x_refsource_FEDORA
RHSA-2018:2388
vendor-advisory
x_refsource_REDHAT
USN-3741-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:2603
vendor-advisory
x_refsource_REDHAT
RHSA-2018:2402
vendor-advisory
x_refsource_REDHAT
20180814 CPU Side-Channel Information Disclosure Vulnerabilities: August 2018
vendor-advisory
x_refsource_CISCO
FEDORA-2018-f8cba144ae
vendor-advisory
x_refsource_FEDORA
USN-3742-2
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:2404
vendor-advisory
x_refsource_REDHAT
USN-3740-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:2391
vendor-advisory
x_refsource_REDHAT
RHSA-2018:2396
vendor-advisory
x_refsource_REDHAT
DSA-4279
vendor-advisory
x_refsource_DEBIAN
RHSA-2018:2392
vendor-advisory
x_refsource_REDHAT
[debian-lts-announce] 20180828 [SECURITY] [DLA 1481-1] linux-4.9 security update
mailing-list
x_refsource_MLIST
USN-3742-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:2602
vendor-advisory
x_refsource_REDHAT
[debian-lts-announce] 20180916 [SECURITY] [DLA 1506-1] intel-microcode security update
mailing-list
x_refsource_MLIST
RHSA-2018:2394
vendor-advisory
x_refsource_REDHAT
RHSA-2018:2387
vendor-advisory
x_refsource_REDHAT
USN-3756-1
vendor-advisory
x_refsource_UBUNTU
https://www.oracle.com/security-alerts/cpujul2020.html
x_refsource_MISC
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
x_refsource_CONFIRM
http://xenbits.xen.org/xsa/advisory-273.html
x_refsource_CONFIRM
https://foreshadowattack.eu/
x_refsource_MISC
https://security.netapp.com/advisory/ntap-20180815-0001/
x_refsource_CONFIRM
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018
x_refsource_CONFIRM
http://support.lenovo.com/us/en/solutions/LEN-24163
x_refsource_CONFIRM
https://www.synology.com/support/security/Synology_SA_18_45
x_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf
x_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf
x_refsource_CONFIRM
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0010
x_refsource_CONFIRM
http://www.vmware.com/security/advisories/VMSA-2018-0020.html
x_refsource_CONFIRM
https://support.f5.com/csp/article/K31300402
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now