vulnerability
Cisco NX-OS: CPU Side-Channel Information Disclosure Vulnerabilities: August 2018 (Multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:C/I:P/A:N) | Aug 14, 2018 | Aug 29, 2018 | Feb 18, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:P/A:N)
Published
Aug 14, 2018
Added
Aug 29, 2018
Modified
Feb 18, 2025
Description
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
Solution
update-nxos
References
- BID-105080
- CERT-VN-982149
- CVE-2018-3615
- https://attackerkb.com/topics/CVE-2018-3615
- CVE-2018-3620
- https://attackerkb.com/topics/CVE-2018-3620
- CVE-2018-3646
- https://attackerkb.com/topics/CVE-2018-3646
- DEBIAN-DSA-4274
- DEBIAN-DSA-4279
- REDHAT-RHSA-2018:2384
- REDHAT-RHSA-2018:2387
- REDHAT-RHSA-2018:2388
- REDHAT-RHSA-2018:2389
- REDHAT-RHSA-2018:2390
- REDHAT-RHSA-2018:2391
- REDHAT-RHSA-2018:2392
- REDHAT-RHSA-2018:2393
- REDHAT-RHSA-2018:2394
- REDHAT-RHSA-2018:2395
- REDHAT-RHSA-2018:2396
- REDHAT-RHSA-2018:2402
- REDHAT-RHSA-2018:2403
- REDHAT-RHSA-2018:2404
- REDHAT-RHSA-2018:2602
- REDHAT-RHSA-2018:2603
- URL-http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.