vulnerability
Amazon Linux AMI: CVE-2018-3615: Security patch for kernel (ALAS-2018-1058)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:C/I:P/A:N) | 2018-08-10 | 2018-09-19 | 2022-10-14 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:P/A:N)
Published
2018-08-10
Added
2018-09-19
Modified
2022-10-14
Description
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
Solution
amazon-linux-upgrade-kernel
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.