Lucene search
K

8 matches found

ThreatPost
ThreatPost
added 2018/10/09 7:37 p.m.131 views

New Ninth-Gen Intel CPUs Shield Against Some Spectre, Meltdown Variants

Intel’s new ninth-generation CPUs come packed with hardware-based protections against two variants of the infamous Meltdown and Spectre speculative execution attacks. The ninth-generation desktop Core processors are dubbed Coffee Lake, and became available for preorder on Tuesday. they’re built t...

5.4CVSS7.5AI score0.84172EPSS
Exploits5References10
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 2:18 p.m.36 views

Security Bulletin: IBM Netezza Host Management is affected by the vulnerabilities known as Spectre and Meltdown.

Summary IBM Netezza Host Management is affected by the vulnerabilities known as Spectre and Meltdown, which can enable CPU data cache timing to be abused to bypass conventional memory security restrictions to gain access to privileged memory that should be inaccessible. Vulnerability Details CVEI...

5.6CVSS6.8AI score0.93838EPSS
Exploits10Affected Software1
MSRC
MSRC
added 2018/03/23 7:0 a.m.67 views

KVA Shadow: Mitigating Meltdown on Windows

On January 3rd, 2018, Microsoft released an advisory and security updates that relate to a new class of discovered hardware vulnerabilities, termed speculative execution side channels, that affect the design methodology and implementation decisions behind many modern microprocessors. This post...

5.6CVSS6.7AI score0.84172EPSS
Exploits3
ThreatPost
ThreatPost
added 2018/03/16 4:15 p.m.51 views

New Microsoft Bug Bounty Program Looks To Squash The Next Spectre, Meltdown

In the wake of the Meltdown and Spectre flaws, Microsoft has rolled out a new bug bounty program targeting speculative execution side channel vulnerabilities. The limited time program is open until December 31, and offers up to $250,000 for identifying new categories of speculative execution...

7.2CVSS1.6AI score0.93838EPSS
Exploits15References4
VMware
VMware
added 2018/02/08 12:0 a.m.74 views

VMware Virtual Appliance updates address side-channel analysis due to speculative execution

a. VMware Virtual Appliance Mitigations for Bounds-Check bypass Spectre-1, and Rogue data cache load issues Meltdown CPU data cache timing can be abused to efficiently leak information out of mis-speculated CPU execution, leading to at worst arbitrary virtual memory read vulnerabilities across...

4.7CVSS6.9AI score0.93838EPSS
Exploits13References10Affected Software6
VMware
VMware
added 2018/02/05 12:0 a.m.562 views

VMSA-2018-0007:VMware Virtual Appliance updates address side-channel analysis due to speculative execution

VMSA-2018-0007.6 VMware Virtual Appliance updates address side-channel analysis due to speculative execution VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2018-0007.6 VMware Security Advisory Severity: Important VMware Security Advisory Synopsis: VMware Virtual Appliance...

5.6CVSS7.6AI score0.93838EPSS
Exploits13References57Affected Software6
ThreatPost
ThreatPost
added 2018/01/07 11:21 p.m.68 views

Experts Weigh In On Spectre Patch Challenges

The race to patch against the Meltdown and Spectre processor vulnerabilities disclosed last week is on. As of today, there are no known exploits in the wild impacting vulnerable Intel, AMD and ARM devices. Currently, vendors are focused on three main mitigation efforts. Patches that address the...

4.7CVSS7.2AI score0.93838EPSS
Exploits13References7
seebug.org
seebug.org
added 2018/01/04 12:0 a.m.1718 views

Reading privileged memory with a side-channel (Meltdown & Spectre)

We have discovered that CPU data cache timing can be abused to efficiently leak information out of mis-speculated execution, leading to at worst arbitrary virtual memory read vulnerabilities across local security boundaries in various contexts. Variants of this issue are known to affect many mode...

6.3AI score0.93838EPSS
Exploits13
Rows per page
Query Builder