6.4 - CVE-2018-3615

Executive Summary

Informations
Name	CVE-2018-3615	First vendor Publication	2018-08-14
Vendor	Cve	Last vendor Modification	2020-08-24

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N
Overall CVSS Score	6.4
Base Score	6.4	Environmental Score	6.4
impact SubScore	4.7	Temporal Score	6.4
Exploitabality Sub Score	1.1

Attack Vector	Local	Attack Complexity	High
Privileges Required	Low	User Interaction	None
Scope	Changed	Confidentiality Impact	High
Integrity Impact	Low	Availability Impact	None
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:P/A:N)
Cvss Base Score	5.4	Attack Range	Local
Cvss Impact Score	7.8	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3615

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-203	Information Exposure Through Discrepancy

CPE : Common Platform Enumeration

Type	Description	Count
Hardware	Intel Core I3-6006u cpe:2.3:h:intel:core_i3-6006u:-:::::::*	1
Hardware	Intel Core I3-6098p cpe:2.3:h:intel:core_i3-6098p:-:::::::*	1
Hardware	Intel Core I3-6100 cpe:2.3:h:intel:core_i3-6100:-:::::::*	1
Hardware	Intel Core I3-6100e cpe:2.3:h:intel:core_i3-6100e:-:::::::*	1
Hardware	Intel Core I3-6100h cpe:2.3:h:intel:core_i3-6100h:-:::::::*	1
Hardware	Intel Core I3-6100t cpe:2.3:h:intel:core_i3-6100t:-:::::::*	1
Hardware	Intel Core I3-6100te cpe:2.3:h:intel:core_i3-6100te:-:::::::*	1
Hardware	Intel Core I3-6100u cpe:2.3:h:intel:core_i3-6100u:-:::::::*	1
Hardware	Intel Core I3-6102e cpe:2.3:h:intel:core_i3-6102e:-:::::::*	1
Hardware	Intel Core I3-6157u cpe:2.3:h:intel:core_i3-6157u:-:::::::*	1
Hardware	Intel Core I3-6167u cpe:2.3:h:intel:core_i3-6167u:-:::::::*	1
Hardware	Intel Core I3-6300 cpe:2.3:h:intel:core_i3-6300:-:::::::*	1
Hardware	Intel Core I3-6300t cpe:2.3:h:intel:core_i3-6300t:-:::::::*	1
Hardware	Intel Core I3-6320 cpe:2.3:h:intel:core_i3-6320:-:::::::*	1
Hardware	Intel Core I3-8100 cpe:2.3:h:intel:core_i3-8100:-:::::::*	1
Hardware	Intel Core I3-8350k cpe:2.3:h:intel:core_i3-8350k:-:::::::*	1
Hardware	Intel Core I5 cpe:2.3:h:intel:core_i5:8600k:::::::* cpe:2.3:h:intel:core_i5:8400:::::::* cpe:2.3:h:intel:core_i5:8350u:::::::* cpe:2.3:h:intel:core_i5:8250u:::::::* cpe:2.3:h:intel:core_i5:6685r:::::::* cpe:2.3:h:intel:core_i5:6600t:::::::* cpe:2.3:h:intel:core_i5:6600k:::::::* cpe:2.3:h:intel:core_i5:6600:::::::* cpe:2.3:h:intel:core_i5:6585r:::::::* cpe:2.3:h:intel:core_i5:6500te:::::::* cpe:2.3:h:intel:core_i5:6500t:::::::* cpe:2.3:h:intel:core_i5:6500:::::::* cpe:2.3:h:intel:core_i5:6442eq:::::::* cpe:2.3:h:intel:core_i5:6440hq:::::::* cpe:2.3:h:intel:core_i5:6440eq:::::::* cpe:2.3:h:intel:core_i5:6402p:::::::* cpe:2.3:h:intel:core_i5:6400t:::::::* cpe:2.3:h:intel:core_i5:6400:::::::* cpe:2.3:h:intel:core_i5:6360u:::::::* cpe:2.3:h:intel:core_i5:6350hq:::::::* cpe:2.3:h:intel:core_i5:6300u:::::::* cpe:2.3:h:intel:core_i5:6300hq:::::::* cpe:2.3:h:intel:core_i5:6287u:::::::* cpe:2.3:h:intel:core_i5:6267u:::::::* cpe:2.3:h:intel:core_i5:6260u:::::::* cpe:2.3:h:intel:core_i5:6200u:::::::* cpe:2.3:h:intel:core_i5:760:::::::* cpe:2.3:h:intel:core_i5:750s:::::::* cpe:2.3:h:intel:core_i5:750:::::::* cpe:2.3:h:intel:core_i5:680:::::::* cpe:2.3:h:intel:core_i5:670:::::::* cpe:2.3:h:intel:core_i5:661:::::::* cpe:2.3:h:intel:core_i5:660:::::::* cpe:2.3:h:intel:core_i5:655k:::::::* cpe:2.3:h:intel:core_i5:650:::::::*	35
Hardware	Intel Core I7-610e cpe:2.3:h:intel:core_i7-610e:-:::::::*	1
Hardware	Intel Core I7-620le cpe:2.3:h:intel:core_i7-620le:-:::::::*	1
Hardware	Intel Core I7-620lm cpe:2.3:h:intel:core_i7-620lm:-:::::::*	1
Hardware	Intel Core I7-620m cpe:2.3:h:intel:core_i7-620m:-:::::::*	1
Hardware	Intel Core I7-620ue cpe:2.3:h:intel:core_i7-620ue:-:::::::*	1
Hardware	Intel Core I7-620um cpe:2.3:h:intel:core_i7-620um:-:::::::*	1
Hardware	Intel Core I7-640lm cpe:2.3:h:intel:core_i7-640lm:-:::::::*	1
Hardware	Intel Core I7-640m cpe:2.3:h:intel:core_i7-640m:-:::::::*	1
Hardware	Intel Core I7-640um cpe:2.3:h:intel:core_i7-640um:-:::::::*	1
Hardware	Intel Core I7-660lm cpe:2.3:h:intel:core_i7-660lm:-:::::::*	1
Hardware	Intel Core I7-660ue cpe:2.3:h:intel:core_i7-660ue:-:::::::*	1
Hardware	Intel Core I7-660um cpe:2.3:h:intel:core_i7-660um:-:::::::*	1
Hardware	Intel Core I7-680um cpe:2.3:h:intel:core_i7-680um:-:::::::*	1
Hardware	Intel Core I7-720qm cpe:2.3:h:intel:core_i7-720qm:-:::::::*	1
Hardware	Intel Core I7-740qm cpe:2.3:h:intel:core_i7-740qm:-:::::::*	1
Hardware	Intel Core I7-7500u cpe:2.3:h:intel:core_i7-7500u:-:::::::*	1
Hardware	Intel Core I7-7560u cpe:2.3:h:intel:core_i7-7560u:-:::::::*	1
Hardware	Intel Core I7-7567u cpe:2.3:h:intel:core_i7-7567u:-:::::::*	1
Hardware	Intel Core I7-7600u cpe:2.3:h:intel:core_i7-7600u:-:::::::*	1
Hardware	Intel Core I7-7660u cpe:2.3:h:intel:core_i7-7660u:-:::::::*	1
Hardware	Intel Core I7-7700 cpe:2.3:h:intel:core_i7-7700:-:::::::*	1
Hardware	Intel Core I7-7700hq cpe:2.3:h:intel:core_i7-7700hq:-:::::::*	1
Hardware	Intel Core I7-7700k cpe:2.3:h:intel:core_i7-7700k:-:::::::*	1
Hardware	Intel Core I7-7700t cpe:2.3:h:intel:core_i7-7700t:-:::::::*	1
Hardware	Intel Core I7-7820eq cpe:2.3:h:intel:core_i7-7820eq:-:::::::*	1
Hardware	Intel Core I7-7820hk cpe:2.3:h:intel:core_i7-7820hk:-:::::::*	1
Hardware	Intel Core I7-7820hq cpe:2.3:h:intel:core_i7-7820hq:-:::::::*	1
Hardware	Intel Core I7-7920hq cpe:2.3:h:intel:core_i7-7920hq:-:::::::*	1
Hardware	Intel Core I7-7Y75 cpe:2.3:h:intel:core_i7-7y75:-:::::::*	1
Hardware	Intel Core I7-820qm cpe:2.3:h:intel:core_i7-820qm:-:::::::*	1
Hardware	Intel Core I7-840qm cpe:2.3:h:intel:core_i7-840qm:-:::::::*	1
Hardware	Intel Core I7-8550u cpe:2.3:h:intel:core_i7-8550u:-:::::::*	1
Hardware	Intel Core I7-860 cpe:2.3:h:intel:core_i7-860:-:::::::*	1
Hardware	Intel Core I7-860s cpe:2.3:h:intel:core_i7-860s:-:::::::*	1
Hardware	Intel Core I7-8650u cpe:2.3:h:intel:core_i7-8650u:-:::::::*	1
Hardware	Intel Core I7-870 cpe:2.3:h:intel:core_i7-870:-:::::::*	1
Hardware	Intel Core I7-8700 cpe:2.3:h:intel:core_i7-8700:-:::::::*	1
Hardware	Intel Core I7-8700k cpe:2.3:h:intel:core_i7-8700k:-:::::::*	1
Hardware	Intel Core I7-870s cpe:2.3:h:intel:core_i7-870s:-:::::::*	1
Hardware	Intel Core I7-875k cpe:2.3:h:intel:core_i7-875k:-:::::::*	1
Hardware	Intel Core I7-880 cpe:2.3:h:intel:core_i7-880:-:::::::*	1
Hardware	Intel Xeon E3 1220 V5 cpe:2.3:h:intel:xeon_e3_1220_v5:-:::::::*	1
Hardware	Intel Xeon E3 1220 V6 cpe:2.3:h:intel:xeon_e3_1220_v6:-:::::::*	1
Hardware	Intel Xeon E3 1225 V5 cpe:2.3:h:intel:xeon_e3_1225_v5:-:::::::*	1
Hardware	Intel Xeon E3 1225 V6 cpe:2.3:h:intel:xeon_e3_1225_v6:-:::::::*	1
Hardware	Intel Xeon E3 1230 V5 cpe:2.3:h:intel:xeon_e3_1230_v5:-:::::::*	1
Hardware	Intel Xeon E3 1230 V6 cpe:2.3:h:intel:xeon_e3_1230_v6:-:::::::*	1
Hardware	Intel Xeon E3 1235L V5 cpe:2.3:h:intel:xeon_e3_1235l_v5:-:::::::*	1
Hardware	Intel Xeon E3 1240 V5 cpe:2.3:h:intel:xeon_e3_1240_v5:-:::::::*	1
Hardware	Intel Xeon E3 1240 V6 cpe:2.3:h:intel:xeon_e3_1240_v6:-:::::::*	1
Hardware	Intel Xeon E3 1240L V5 cpe:2.3:h:intel:xeon_e3_1240l_v5:-:::::::*	1
Hardware	Intel Xeon E3 1245 V5 cpe:2.3:h:intel:xeon_e3_1245_v5:-:::::::*	1
Hardware	Intel Xeon E3 1245 V6 cpe:2.3:h:intel:xeon_e3_1245_v6:-:::::::*	1
Hardware	Intel Xeon E3 1260L V5 cpe:2.3:h:intel:xeon_e3_1260l_v5:-:::::::*	1
Hardware	Intel Xeon E3 1268L V5 cpe:2.3:h:intel:xeon_e3_1268l_v5:-:::::::*	1
Hardware	Intel Xeon E3 1270 V5 cpe:2.3:h:intel:xeon_e3_1270_v5:-:::::::*	1
Hardware	Intel Xeon E3 1270 V6 cpe:2.3:h:intel:xeon_e3_1270_v6:-:::::::*	1
Hardware	Intel Xeon E3 1275 V5 cpe:2.3:h:intel:xeon_e3_1275_v5:-:::::::*	1
Hardware	Intel Xeon E3 1275 V6 cpe:2.3:h:intel:xeon_e3_1275_v6:-:::::::*	1
Hardware	Intel Xeon E3 1280 V5 cpe:2.3:h:intel:xeon_e3_1280_v5:-:::::::*	1
Hardware	Intel Xeon E3 1280 V6 cpe:2.3:h:intel:xeon_e3_1280_v6:-:::::::*	1
Hardware	Intel Xeon E3 1285 V6 cpe:2.3:h:intel:xeon_e3_1285_v6:-:::::::*	1
Hardware	Intel Xeon E3 1501L V6 cpe:2.3:h:intel:xeon_e3_1501l_v6:-:::::::*	1
Hardware	Intel Xeon E3 1501M V6 cpe:2.3:h:intel:xeon_e3_1501m_v6:-:::::::*	1
Hardware	Intel Xeon E3 1505L V5 cpe:2.3:h:intel:xeon_e3_1505l_v5:-:::::::*	1
Hardware	Intel Xeon E3 1505L V6 cpe:2.3:h:intel:xeon_e3_1505l_v6:-:::::::*	1
Hardware	Intel Xeon E3 1505M V5 cpe:2.3:h:intel:xeon_e3_1505m_v5:-:::::::*	1
Hardware	Intel Xeon E3-1505M V6 cpe:2.3:h:intel:xeon_e3-1505m_v6:-:::::::*	1
Hardware	Intel Xeon E3-1515M V5 cpe:2.3:h:intel:xeon_e3-1515m_v5:-:::::::*	1
Hardware	Intel Xeon E3-1535M V5 cpe:2.3:h:intel:xeon_e3-1535m_v5:-:::::::*	1
Hardware	Intel Xeon E3-1535M V6 cpe:2.3:h:intel:xeon_e3-1535m_v6:-:::::::*	1
Hardware	Intel Xeon E3-1545M V5 cpe:2.3:h:intel:xeon_e3-1545m_v5:-:::::::*	1
Hardware	Intel Xeon E3-1558L V5 cpe:2.3:h:intel:xeon_e3-1558l_v5:-:::::::*	1
Hardware	Intel Xeon E3-1565L V5 cpe:2.3:h:intel:xeon_e3-1565l_v5:-:::::::*	1
Hardware	Intel Xeon E3-1575M V5 cpe:2.3:h:intel:xeon_e3-1575m_v5:-:::::::*	1
Hardware	Intel Xeon E3-1578L V5 cpe:2.3:h:intel:xeon_e3-1578l_v5:-:::::::*	1
Hardware	Intel Xeon E3-1585 V5 cpe:2.3:h:intel:xeon_e3-1585_v5:-:::::::*	1
Hardware	Intel Xeon E3-1585L V5 cpe:2.3:h:intel:xeon_e3-1585l_v5:-:::::::*	1

Snort® IPS/IDS

Date	Description
2020-12-05	Intel x86 L1 data cache side-channel analysis information leak attempt RuleID : 47598 - Revision : 1 - Type : OS-OTHER
2020-12-05	Intel x86 L1 data cache side-channel analysis information leak attempt RuleID : 47597 - Revision : 1 - Type : OS-OTHER
2020-12-05	Intel x86 L1 data cache side-channel analysis information leak attempt RuleID : 47596 - Revision : 1 - Type : OS-OTHER
2020-12-05	Intel x86 L1 data cache side-channel analysis information leak attempt RuleID : 47595 - Revision : 1 - Type : OS-OTHER

Nessus® Vulnerability Scanner

Date	Description
2018-09-17	Name : The remote Debian host is missing a security update. File : debian_DLA-1506.nasl - Type : ACT_GATHER_INFO
2018-08-29	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2018-240-01.nasl - Type : ACT_GATHER_INFO
2018-08-15	Name : The remote Amazon Linux 2 host is missing a security update. File : al2_ALAS-2018-1058.nasl - Type : ACT_GATHER_INFO
2018-08-15	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1058.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/105080
CERT-VN	https://www.kb.cert.org/vuls/id/982149
CISCO	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-s...
CONFIRM	http://support.lenovo.com/us/en/solutions/LEN-24163 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0008 https://security.netapp.com/advisory/ntap-20180815-0001/ https://software.intel.com/security-software-guidance/software-guidance/l1-te... https://support.f5.com/csp/article/K35558453 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr... https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-001... https://www.synology.com/support/security/Synology_SA_18_45
MISC	https://foreshadowattack.eu/
MLIST	https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html
SECTRACK	http://www.securitytracker.com/id/1041451

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-02-02 01:56:16	Multiple Updates
2024-02-01 12:15:32	Multiple Updates
2023-09-27 12:48:41	Multiple Updates
2023-09-26 12:53:21	Multiple Updates
2021-05-04 13:14:43	Multiple Updates
2021-04-22 02:29:39	Multiple Updates
2020-12-05 21:23:46	Multiple Updates
2020-09-03 01:23:10	Multiple Updates
2020-05-23 01:13:36	Multiple Updates
2018-10-10 17:19:42	Multiple Updates
2018-09-17 17:19:35	Multiple Updates
2018-08-17 21:20:18	Multiple Updates
2018-08-17 00:18:54	Multiple Updates
2018-08-16 21:19:17	Multiple Updates
2018-08-16 17:19:27	Multiple Updates
2018-08-15 17:19:45	Multiple Updates
2018-08-15 00:19:46	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	129
Sources(s)	17
Snort® Rule(s)	4
Nessus® Exploit(s)	4

	Related
5.4	VU#982149
5.4	cisco-sa-201808...
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)

6.4 - CVE-2018-3615

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU