Lucene search

K
ubuntucveUbuntu.comUB:CVE-2017-5753
HistoryJan 03, 2018 - 12:00 a.m.

CVE-2017-5753

2018-01-0300:00:00
ubuntu.com
ubuntu.com
30

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

CVSS3

5.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS

0.976

Percentile

100.0%

Systems with microprocessors utilizing speculative execution and branch
prediction may allow unauthorized disclosure of information to an attacker
with local user access via a side-channel analysis.

Bugs

Notes

Author Note
tyhicks Variant 1, aka “Spectre” The break-fix lines for this CVE are not complete since a large number of patches are required to mitigate this issue. The commit(s) listed are chosen as placeholders for automated CVE triage purposes.
OSVersionArchitecturePackageVersionFilename
ubuntu17.10noarchfirefox< 57.0.4+build1-0ubuntu0.17.10.1UNKNOWN
ubuntu18.04noarchfirefox< 59.0.1+build1-0ubuntu1UNKNOWN
ubuntu18.10noarchfirefox< 59.0.1+build1-0ubuntu1UNKNOWN
ubuntu14.04noarchfirefox< 57.0.4+build1-0ubuntu0.14.04.1UNKNOWN
ubuntu16.04noarchfirefox< 57.0.4+build1-0ubuntu0.16.04.1UNKNOWN
ubuntu17.04noarchfirefox< 57.0.4+build1-0ubuntu0.17.04.1UNKNOWN
ubuntu17.10noarchlinux< 4.13.0-31.34UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-157.207UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-112.135UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1011.11UNKNOWN
Rows per page:
1-10 of 311

References

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

CVSS3

5.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS

0.976

Percentile

100.0%