Lucene search

[email protected]NVD:CVE-2018-3652

HistoryJul 10, 2018 - 9:29 p.m.

CVE-2018-3652

2018-07-1021:29:00

CWE-200

[email protected]

web.nvd.nist.gov

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.6 High

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.5%

JSON

Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3 Family, Intel Xeon Scalable processors, and Intel Xeon Processor D Family allows a limited physical presence attacker to potentially access platform secrets via debug interfaces.

Affected configurations

NVD

Node

intelxeon_e3Match1505m_v6

intelxeon_e3Match1515m_v5

intelxeon_e3Match1535m_v5

intelxeon_e3Match1535m_v6

intelxeon_e3Match1545m_v5

intelxeon_e3Match1558l_v5

intelxeon_e3Match1565l_v5

intelxeon_e3Match1575m_v5

intelxeon_e3Match1578l_v5

intelxeon_e3Match1585_v5

intelxeon_e3Match1585l_v5

intelxeon_e3_1220_v5Match-

intelxeon_e3_1220_v6Match-

intelxeon_e3_1225_v5Match-

intelxeon_e3_1225_v6Match-

intelxeon_e3_1230_v5Match-

intelxeon_e3_1230_v6Match-

intelxeon_e3_1235l_v5Match-

intelxeon_e3_1240_v5Match-

intelxeon_e3_1240_v6Match-

intelxeon_e3_1240l_v5Match-

intelxeon_e3_1245_v5Match-

intelxeon_e3_1245_v6Match-

intelxeon_e3_1260l_v5Match-

intelxeon_e3_1268l_v5Match-

intelxeon_e3_1270_v5Match-

intelxeon_e3_1270_v6Match-

intelxeon_e3_1275_v5Match-

intelxeon_e3_1275_v6Match-

intelxeon_e3_1280_v5Match-

intelxeon_e3_1280_v6Match-

intelxeon_e3_1285_v6Match-

intelxeon_e3_1501l_v6Match-

intelxeon_e3_1501m_v6Match-

intelxeon_e3_1505l_v5Match-

intelxeon_e3_1505l_v6Match-

intelxeon_e3_1505m_v5Match-

Node

intelxeon_bronze_3104Match-

intelxeon_bronze_3106Match-

intelxeon_goldMatch5115

intelxeon_goldMatch5118

intelxeon_goldMatch5119t

intelxeon_goldMatch5120

intelxeon_goldMatch5120t

intelxeon_goldMatch5122

intelxeon_goldMatch6126

intelxeon_goldMatch6126f

intelxeon_goldMatch6126t

intelxeon_goldMatch6128

intelxeon_goldMatch6130

intelxeon_goldMatch6130f

intelxeon_goldMatch6130t

intelxeon_goldMatch6132

intelxeon_goldMatch6134

intelxeon_goldMatch6134m

intelxeon_goldMatch6136

intelxeon_goldMatch6138

intelxeon_goldMatch6138f

intelxeon_goldMatch6138p

intelxeon_goldMatch6138t

intelxeon_goldMatch6140

intelxeon_goldMatch6140m

intelxeon_goldMatch6142

intelxeon_goldMatch6142f

intelxeon_goldMatch6142m

intelxeon_goldMatch6144

intelxeon_goldMatch6146

intelxeon_goldMatch6148

intelxeon_goldMatch6148f

intelxeon_goldMatch6150

intelxeon_goldMatch6152

intelxeon_goldMatch6154

intelxeon_platinumMatch8153

intelxeon_platinumMatch8156

intelxeon_platinumMatch8158

intelxeon_platinumMatch8160

intelxeon_platinumMatch8160f

intelxeon_platinumMatch8160m

intelxeon_platinumMatch8160t

intelxeon_platinumMatch8164

intelxeon_platinumMatch8168

intelxeon_platinumMatch8170

intelxeon_platinumMatch8170m

intelxeon_platinumMatch8176

intelxeon_platinumMatch8176f

intelxeon_platinumMatch8176m

intelxeon_platinumMatch8180

intelxeon_platinumMatch8180m

intelxeon_silverMatch4108

intelxeon_silverMatch4109t

intelxeon_silverMatch4110

intelxeon_silverMatch4112

intelxeon_silverMatch4114

intelxeon_silverMatch4114t

intelxeon_silverMatch4116

intelxeon_silverMatch4116t

Node

intelxeonMatchd-1513n

intelxeonMatchd-1518

intelxeonMatchd-1520

intelxeonMatchd-1521

intelxeonMatchd-1523n

intelxeonMatchd-1527

intelxeonMatchd-1528

intelxeonMatchd-1529

intelxeonMatchd-1531

intelxeonMatchd-1533n

intelxeonMatchd-1537

intelxeonMatchd-1539

intelxeonMatchd-1540

intelxeonMatchd-1541

intelxeonMatchd-1543n

intelxeonMatchd-1548

intelxeonMatchd-1553n

intelxeonMatchd-1557

intelxeonMatchd-1559

intelxeonMatchd-1567

intelxeonMatchd-1571

intelxeonMatchd-1577

intelxeonMatchd-2123it

intelxeonMatchd-2141i

intelxeonMatchd-2142it

intelxeonMatchd-2143it

intelxeonMatchd-2145nt

intelxeonMatchd-2146nt

intelxeonMatchd-2161i

intelxeonMatchd-2163it

intelxeonMatchd-2166nt

intelxeonMatchd-2173it

intelxeonMatchd-2177nt

intelxeonMatchd-2183it

intelxeonMatchd-2187nt

Node

intelatom_cMatchc2308

intelatom_cMatchc2316

intelatom_cMatchc2338

intelatom_cMatchc2350

intelatom_cMatchc2358

intelatom_cMatchc2508

intelatom_cMatchc2516

intelatom_cMatchc2518

intelatom_cMatchc2530

intelatom_cMatchc2538

intelatom_cMatchc2550

intelatom_cMatchc2558

intelatom_cMatchc2718

intelatom_cMatchc2730

intelatom_cMatchc2738

intelatom_cMatchc2750

intelatom_cMatchc2758

intelatom_cMatchc3308

intelatom_cMatchc3336

intelatom_cMatchc3338

intelatom_cMatchc3508

intelatom_cMatchc3538

intelatom_cMatchc3558

intelatom_cMatchc3708

intelatom_cMatchc3750

intelatom_cMatchc3758

intelatom_cMatchc3808

intelatom_cMatchc3830

intelatom_cMatchc3850

intelatom_cMatchc3858

intelatom_cMatchc3950

intelatom_cMatchc3955

intelatom_cMatchc3958

References

security.netapp.com/advisory/ntap-20180802-0001/

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00127.html

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.6 High

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.5%

JSON

Related for NVD:CVE-2018-3652

lenovo2 hp1 prion1 cvelist1 cve1