Executive Summary

Informations
NameCVE-2018-3652First vendor Publication2018-07-10
VendorCveLast vendor Modification2018-09-11

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score4.6Attack RangeLocal
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3 Family, Intel Xeon Scalable processors, and Intel Xeon Processor D Family allows a limited physical presence attacker to potentially access platform secrets via debug interfaces.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3652

CWE : Common Weakness Enumeration

%idName
100 %CWE-264Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware33
Hardware35
Hardware2
Hardware37
Hardware33
Hardware16
Hardware8

Sources (Detail)

SourceUrl
CONFIRM https://security.netapp.com/advisory/ntap-20180802-0001/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-001...

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2018-09-11 21:20:22
  • Multiple Updates
2018-08-04 09:19:29
  • Multiple Updates
2018-07-11 00:19:03
  • First insertion