ByteOS Network

CVE Vulnerability Details :

CVE-2018-3640

PUBLISHED

More Info Official Page

Assigner-intel

Assigner Org ID-6dda929c-bb53-4a77-a76d-48e79601a1ce

Published At-22 May, 2018 | 12:00

Updated At-16 Sep, 2024 | 19:31

▼CVE Numbering Authority (CNA)

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.

Affected Products

Vendor

Intel Corporation

Product

Multiple

Versions

Affected

Multiple

Problem Types

Type	CWE ID	Description
text	N/A	Information Disclosure

Type: text

CWE ID: N/A

Description: Information Disclosure

References

Hyperlink	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf	x_refsource_CONFIRM
http://support.lenovo.com/us/en/solutions/LEN-22133	x_refsource_CONFIRM
https://www.us-cert.gov/ncas/alerts/TA18-141A	third-party-advisory x_refsource_CERT
http://www.securitytracker.com/id/1042004	vdb-entry x_refsource_SECTRACK
http://www.securitytracker.com/id/1040949	vdb-entry x_refsource_SECTRACK
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0005	x_refsource_CONFIRM
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html	x_refsource_CONFIRM
https://www.synology.com/support/security/Synology_SA_18_23	x_refsource_CONFIRM
https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability	x_refsource_CONFIRM
https://www.kb.cert.org/vuls/id/180049	third-party-advisory x_refsource_CERT-VN
http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html	x_refsource_CONFIRM
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180013	x_refsource_CONFIRM
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel	vendor-advisory x_refsource_CISCO
https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006	x_refsource_CONFIRM
https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html	mailing-list x_refsource_MLIST
https://www.debian.org/security/2018/dsa-4273	vendor-advisory x_refsource_DEBIAN
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us	x_refsource_CONFIRM
http://www.securityfocus.com/bid/104228	vdb-entry x_refsource_BID
https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html	mailing-list x_refsource_MLIST
https://usn.ubuntu.com/3756-1/	vendor-advisory x_refsource_UBUNTU
https://security.netapp.com/advisory/ntap-20180521-0001/	x_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf	x_refsource_CONFIRM

Hyperlink: https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf

Resource:

x_refsource_CONFIRM

Hyperlink: http://support.lenovo.com/us/en/solutions/LEN-22133

Resource:

x_refsource_CONFIRM

Hyperlink: https://www.us-cert.gov/ncas/alerts/TA18-141A

Resource:

third-party-advisory

x_refsource_CERT

Hyperlink: http://www.securitytracker.com/id/1042004

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://www.securitytracker.com/id/1040949

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0005

Resource:

x_refsource_CONFIRM

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html

Resource:

x_refsource_CONFIRM

Hyperlink: https://www.synology.com/support/security/Synology_SA_18_23

Resource:

x_refsource_CONFIRM

Hyperlink: https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability

Resource:

x_refsource_CONFIRM

Hyperlink: https://www.kb.cert.org/vuls/id/180049

Resource:

third-party-advisory

x_refsource_CERT-VN

Hyperlink: http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html

Resource:

x_refsource_CONFIRM

Hyperlink: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180013

Resource:

x_refsource_CONFIRM

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel

Resource:

vendor-advisory

x_refsource_CISCO

Hyperlink: https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006

Resource:

x_refsource_CONFIRM

Hyperlink: https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: https://www.debian.org/security/2018/dsa-4273

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securityfocus.com/bid/104228

Resource:

vdb-entry

x_refsource_BID

Hyperlink: https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: https://usn.ubuntu.com/3756-1/

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: https://security.netapp.com/advisory/ntap-20180521-0001/

Resource:

x_refsource_CONFIRM

Hyperlink: https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf

Resource:

x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf	x_refsource_CONFIRM x_transferred
http://support.lenovo.com/us/en/solutions/LEN-22133	x_refsource_CONFIRM x_transferred
https://www.us-cert.gov/ncas/alerts/TA18-141A	third-party-advisory x_refsource_CERT x_transferred
http://www.securitytracker.com/id/1042004	vdb-entry x_refsource_SECTRACK x_transferred
http://www.securitytracker.com/id/1040949	vdb-entry x_refsource_SECTRACK x_transferred
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0005	x_refsource_CONFIRM x_transferred
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html	x_refsource_CONFIRM x_transferred
https://www.synology.com/support/security/Synology_SA_18_23	x_refsource_CONFIRM x_transferred
https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability	x_refsource_CONFIRM x_transferred
https://www.kb.cert.org/vuls/id/180049	third-party-advisory x_refsource_CERT-VN x_transferred
http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html	x_refsource_CONFIRM x_transferred
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180013	x_refsource_CONFIRM x_transferred
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel	vendor-advisory x_refsource_CISCO x_transferred
https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006	x_refsource_CONFIRM x_transferred
https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html	mailing-list x_refsource_MLIST x_transferred
https://www.debian.org/security/2018/dsa-4273	vendor-advisory x_refsource_DEBIAN x_transferred
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us	x_refsource_CONFIRM x_transferred
http://www.securityfocus.com/bid/104228	vdb-entry x_refsource_BID x_transferred
https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html	mailing-list x_refsource_MLIST x_transferred
https://usn.ubuntu.com/3756-1/	vendor-advisory x_refsource_UBUNTU x_transferred
https://security.netapp.com/advisory/ntap-20180521-0001/	x_refsource_CONFIRM x_transferred
https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf	x_refsource_CONFIRM x_transferred