Lucene search

K
redhatcveRedhat.comRH:CVE-2018-3646
HistoryJan 24, 2021 - 10:39 p.m.

CVE-2018-3646

2021-01-2422:39:20
redhat.com
access.redhat.com
32

0.002 Low

EPSS

Percentile

64.5%

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.