VMware vSphere, Workstation and Fusion updates enable Hypervisor-Assisted Guest Mitigations for Speculative Store Bypass issue.

2018-05-2100:00:00

www.vmware.com

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

0.003 Low

EPSS

Percentile

65.2%

JSON

vCenter Server, ESXi, Workstation, and Fusion update speculative execution control mechanism for Virtual Machines (VMs). As a result, a patched Guest Operating System (GOS) can remediate the Speculative Store bypass issue (CVE-2018-3639) using the Speculative-Store-Bypass-Disable (SSBD) control bit. This issue may allow for information disclosure in applications and/or execution runtimes which rely on managed code security mechanisms. Based on current evaluations, we do not believe that CVE-2018-3639 could allow for VM to VM or Hypervisor to VM Information disclosure.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2018-3639 to this issue.

Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.

CPENameOperatorVersion
vclt6.7.0b
vclt6.5 U2b
vclt6.0 U3f
vclt5.5 U3i
esxiltESXi670-201806401-BG
esxiltESXi670-201806402-BG
esxiltESXi650-201806401-BG
esxiltESXi650-201806402-BG
esxiltESXi600-201806401-BG
esxiltESXi600-201806402-BG

Name	Operator	Version
vc	lt	6.7.0b
vc	lt	6.5 U2b
vc	lt	6.0 U3f
vc	lt	5.5 U3i
esxi	lt	ESXi670-201806401-BG
esxi	lt	ESXi670-201806402-BG
esxi	lt	ESXi650-201806401-BG
esxi	lt	ESXi650-201806402-BG
esxi	lt	ESXi600-201806401-BG
esxi	lt	ESXi600-201806402-BG