Lucene search

CVE-2018-5407

🗓️ 13 Jan 2020 03:32:40Reported by redhat.comType

A microprocessor side-channel vulnerability found on SMT architectures allows an attacker to extract secret information by running a malicious process on the same core as the victim process. Mitigation patches for the openssl package in Red Hat Enterprise Linux 7 are being developed

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Product Security Advisories	[R1] Nessus 8.1.1 Fixes Multiple Third-party Vulnerabilities	20 Dec 201817:47	–	tenable
Tenable Product Security Advisories	[R1] Nessus 8.1.1 Fixes Multiple Third-party Vulnerabilities	20 Dec 201817:47	–	tenable
OpenSSL	Vulnerability in OpenSSL - Microarchitecture timing vulnerability in ECC scalar multiplication	2 Nov 201800:00	–	openssl
IBM Security Bulletins	Security Bulletin: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)	21 Jan 201916:15	–	ibm
IBM Security Bulletins	Security Bulletin: Aspera Web Applications (Faspex, Orchestrator, Shares) and On Demand products are affected by OpenSSL Vulnerabilities (CVE-2018-5407)	15 Aug 201900:44	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in OpenSSL affects IBM Integrated Analytics System	18 Oct 201904:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by a an openssl vulnerability (CVE-2018-5407)	27 Jun 201908:35	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in OpenSSL affects IBM OS Image for Red Hat Linux Systems, AIX and bundling products for IBM PureApplication Systems (CVE-2018-5407)	11 Sep 201905:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM has released Unified Extensible Firmware Interface (UEFI) fixes in response to OpenSSL vulnerability CVE-2018-5407	7 Dec 202322:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by an OpenSSL vulnerability	6 Oct 202020:42	–	ibm

Source	Link
cve	www.cve.org/CVERecord
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jan 2020 03:40Current

0.3Low risk

Vulners AI Score0.3

EPSS0.00778