Lucene search

K
redhatcveRedhat.comRH:CVE-2018-3620
HistoryMar 20, 2021 - 9:41 p.m.

CVE-2018-3620

2021-03-2021:41:50
redhat.com
access.redhat.com
24

EPSS

0.974

Percentile

99.9%

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.