Lucene search

K
f5F5F5:K41283800
HistoryMay 15, 2019 - 12:00 a.m.

K41283800 : INTEL-SA-00233 Microarchitectural Data Sampling Advisory

2019-05-1500:00:00
my.f5.com
36

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

6.8 Medium

AI Score

Confidence

High

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.0%

Security Advisory Description

Multiple vulnerabilities in Intel processors have been mentioned in several sources and are referred to collectively as INTEL-SA-00233 Microarchitectural Data Sampling Advisory. F5 is aware of these vulnerabilities and is investigating as information becomes available. As Intel officially recognizes and announces the vulnerabilities, they will be added to the following table.

To locate relevant articles for these vulnerabilities, refer to the following table. If no article is listed in the** Article** column, an article has not yet been published. F5 Technical Support has no additional information on these issues.

Vulnerability Article
CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS) K52370164: Microarchitectural Store Buffer Data Sampling (MSBDS) CVE-2018-12126
CVE-2018-12127: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS) K97035296: Microarchitectural Load Port Data Sampling - Information Leak (MLPDS) CVE-2018-12127
CVE-2018-12130: Microarchitectural Fill Buffer Data Sampling (MFBDS) K80159635: Microarchitectural Fill Buffer Data Sampling (MFBDS) CVE-2018-12130
CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) K34303485: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) CVE-2019-11091

Note: This is a temporary index. When an article has been published for all of the CVEs in question, this article may no longer be maintained, may be repurposed, or may be archived without advanced notice.

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

6.8 Medium

AI Score

Confidence

High

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.0%