vulnerability
Cisco NX-OS: CPU Side-Channel Information Disclosure Vulnerabilities (Multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:C/I:N/A:N) | Jan 4, 2018 | May 7, 2018 | Feb 18, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:N/A:N)
Published
Jan 4, 2018
Added
May 7, 2018
Modified
Feb 18, 2025
Description
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
Solution
update-nxos
References
- BID-102371
- BID-102376
- BID-102378
- BID-106128
- CERT-VN-180049
- CERT-VN-584653
- CVE-2017-5715
- https://attackerkb.com/topics/CVE-2017-5715
- CVE-2017-5753
- https://attackerkb.com/topics/CVE-2017-5753
- CVE-2017-5754
- https://attackerkb.com/topics/CVE-2017-5754
- DEBIAN-DSA-4078
- DEBIAN-DSA-4082
- DEBIAN-DSA-4120
- DEBIAN-DSA-4187
- DEBIAN-DSA-4188
- DEBIAN-DSA-4213
- REDHAT-RHSA-2018:0292
- URL-http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.