17 matches found
CVE-2017-5715
CVE-2017-5715 (Spectre Variant 2) describes speculative-execution side-channel issues used to disclose memory. Connected docs show concrete mitigations and impact across vendors: AMD notes that LFENCE/JMP mitigation (V2-2) may be insufficient on some CPUs; AMD recommends standard mitigations (ret...
CVE-2017-5753
CVE-2017-5753 is part of the Spectre family (Variant 1) described in the SPECTRE_MELTDOWN_ADVISORY: it involves speculative execution and a bounds-check bypass that can enable an unprivileged attacker to read privileged memory via cache timing analysis. IBM’s AIX/VIOS advisories and iFixes addres...
CVE-2018-3639
CVE-2018-3639 is a speculative execution side‑channel vulnerability (SSB) that can leak memory via speculative stores. The Connected ALMA doc notes a mitigation: SSB is disabled by the new alt-java launcher, reducing impact at the cost of performance, and it references OpenJDK 8u282 as part of th...
CVE-2017-5754
CVE-2017-5754 is the Meltdown vulnerability: a speculative-execution side-channel in kernels could allow a local attacker to read privileged memory. Apple documents show Meltdown affecting Kernel on iOS/macOS/watchOS with related entries (e.g., CVE-2017-5754) and list mitigation via security upda...
CVE-2018-3646
CVE-2018-3646 is the L1 Terminal Fault (L1TF) vulnerability affecting systems with Intel CPUs. It allows a local attacker, including guests in virtualized environments, to read data from the L1 data cache via side-channel analysis. Apple’s Hypervisor entry ties this to speculative execution/guest...
CVE-2018-3665
CVE-2018-3665 affects systems using Intel Core-based CPUs with Lazy FP state restore enabled. A local attacker could exploit speculative execution side channels to read FP/SIMD state from other processes or the kernel. Public details in connected docs show Linux kernel mitigations (disable Lazy F...
CVE-2018-3693
CVE-2018-3693 (Spectre-NG Variant 1.1) affects speculative execution/branch-prediction CPUs and can allow local attackers to read memory via side-channels. Connected docs show F5 advisories for BIG-IP, BIG-IQ, and Traffix SDC listing affected platforms and indicate exposure is local (requires aut...
CVE-2018-3620
CVE-2018-3620 describes an information disclosure via speculative execution side-channel (L1TF) affecting Intel CPUs where data in the L1 data cache could be read by a local attacker through OS/page-table interactions. The CVE covers OS/SMM impact and, in related variants, VMM/guest contexts, ena...
CVE-2018-3615
CVE-2018-3615 (L1 Terminal Fault: SGX) is a speculative‑execution side‑channel vulnerability affecting Intel SGX: a local attacker can exfiltrate data from an SGX enclave through the L1 data cache. The underlying cause is transient execution that, after a fault is raised, can still leak cache dat...
CVE-2018-3640
CVE-2018-3640 affects macOS EFI/Hypervisor components on macOS High Sierra 10.13.6 and Mojave 10.14, where systems with speculative execution and speculative reads of system registers may leak information via a side‑channel. The root cause is speculative execution side‑channel disclosures; a micr...
CVE-2021-0144
CVE-2021-0144 (Intel BSSA DFT) is triggered by insecure default variable initialization in the BIOS Shared SW Architecture Design for Test feature, enabling local privilege escalation for authenticated/privileged users. Public adapters include Intel’s advisory INTEL-SA-00525 and related vendor bu...
CVE-2021-0114
CVE-2021-0114 refers to an unchecked return value in the firmware for some Intel processors that could enable a local attacker to escalate privileges. The vulnerability is documented across multiple advisories (Intel IPU BIOS advisory and IBM HP/IBM QRadar related notes) and is described as a loc...
CVE-2018-9056
CVE-2018-9056 (BranchScope) describes a side-channel vulnerability affecting processors using speculative execution, enabling local attackers to infer memory contents through the Branch Prediction Unit’s patterns, notably the Pattern History Table (PHT). Documents consistently reference a hardwar...
CVE-2018-3619
CVE-2018-3619 describes an information-disclosure vulnerability in storage media when using an Intel® Optane™ memory module with BitLocker-enabled Whole Disk Encryption. A small region on the non-Optane memory can remain unencrypted if BitLocker is enabled after configuring the Optane module, pot...
CVE-2020-24491
CVE-2020-24491 concerns a potential information disclosure in Intel SGX on some 10th Generation Intel Core processors. The issue is triggered by a debug message that reveals addresses of memory transactions, which a privileged user could use to disclose information via local access. Affected prod...
CVE-2018-12169
CVE-2018-12169 is described in Lenovo PS/LEN advisory as part of Intel Boot Guard verification flaws. The platform sample firmware supplied by Intel, incorporated by Lenovo across multiple products, contains a logic error that may cause it to scan for and execute code in a region that should not ...
CVE-2017-5704
CVE-2017-5704 concerns insecure handling of credentials in Intel platform sample firmware used by 4th–7th Gen Intel Core processors with AMT. The root cause is that the platform sample code firmware potentially exposes password information in memory to a local attacker with administrative privile...