Core M Security Vulnerabilities and Issues — Core M CVE List

Lucene search

IntelCore M

10 matches found

CVE•added 2018/01/04 1:29 p.m.•1311 views

CVE-2017-5715

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

5.6CVSS6.2AI score0.90658EPSS

CVE•added 2018/01/04 1:29 p.m.•1019 views

CVE-2017-5753

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

5.6CVSS6.1AI score0.94332EPSS

CVE•added 2018/05/22 12:29 p.m.•726 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS

CVE•added 2018/01/04 1:29 p.m.•656 views

CVE-2017-5754

5.6CVSS5.9AI score0.92531EPSS

CVE•added 2018/08/14 7:29 p.m.•408 views

CVE-2018-3646

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.

5.6CVSS6.5AI score0.05174EPSS

CVE•added 2018/06/21 8:29 p.m.•321 views

CVE-2018-3665

System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.

5.6CVSS6AI score0.01319EPSS

CVE•added 2018/08/14 7:29 p.m.•273 views

CVE-2018-3620

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.

5.6CVSS6.5AI score0.03023EPSS

CVE•added 2018/07/10 9:29 p.m.•270 views

CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.

5.6CVSS6.3AI score0.01192EPSS

CVE•added 2018/05/22 12:29 p.m.•228 views

CVE-2018-3640

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.

5.6CVSS5.6AI score0.01182EPSS

CVE•added 2018/03/27 5:29 p.m.•55 views

CVE-2018-9056

Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table (PHT), aka BranchScope.

5.6CVSS5.2AI score0.00122EPSS