Core M Security Vulnerabilities and Issues — Core M CVE List

Lucene search

IntelCore M

10 matches found

CVE•added 2018/01/04 1:29 p.m.•1336 views

CVE-2017-5715

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

5.6CVSS6.2AI score0.91016EPSS

CVE•added 2018/01/04 1:29 p.m.•1041 views

CVE-2017-5753

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

5.6CVSS6.1AI score0.94301EPSS

CVE•added 2018/05/22 12:29 p.m.•750 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS

CVE•added 2018/01/04 1:29 p.m.•668 views

CVE-2017-5754

5.6CVSS5.9AI score0.89035EPSS

CVE•added 2018/08/14 7:29 p.m.•412 views

CVE-2018-3646

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.

5.6CVSS6.5AI score0.03877EPSS

CVE•added 2018/06/21 8:29 p.m.•325 views

CVE-2018-3665

System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.

5.6CVSS6AI score0.01319EPSS

CVE•added 2018/07/10 9:29 p.m.•279 views

CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.

5.6CVSS6.3AI score0.01192EPSS

CVE•added 2018/08/14 7:29 p.m.•278 views

CVE-2018-3620

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.

5.6CVSS6.5AI score0.03023EPSS

CVE•added 2018/05/22 12:29 p.m.•229 views

CVE-2018-3640

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.

5.6CVSS5.6AI score0.01182EPSS

CVE•added 2018/03/27 5:29 p.m.•55 views

CVE-2018-9056

Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table (PHT), aka BranchScope.

5.6CVSS5.2AI score0.00122EPSS