vulnerability
Cisco NX-OS: CPU Side-Channel Information Disclosure Vulnerabilities: August 2018 (Multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:C/I:P/A:N) | 2018-08-14 | 2018-08-29 | 2025-02-18 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:P/A:N)
Published
2018-08-14
Added
2018-08-29
Modified
2025-02-18
Description
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
Solution
update-nxos
References
- BID-105080
- CERT-VN-982149
- CVE-2018-3615
- https://attackerkb.com/topics/CVE-2018-3615
- CVE-2018-3620
- https://attackerkb.com/topics/CVE-2018-3620
- CVE-2018-3646
- https://attackerkb.com/topics/CVE-2018-3646
- DEBIAN-DSA-4274
- DEBIAN-DSA-4279
- REDHAT-RHSA-2018:2384
- REDHAT-RHSA-2018:2387
- REDHAT-RHSA-2018:2388
- REDHAT-RHSA-2018:2389
- REDHAT-RHSA-2018:2390
- REDHAT-RHSA-2018:2391
- REDHAT-RHSA-2018:2392
- REDHAT-RHSA-2018:2393
- REDHAT-RHSA-2018:2394
- REDHAT-RHSA-2018:2395
- REDHAT-RHSA-2018:2396
- REDHAT-RHSA-2018:2402
- REDHAT-RHSA-2018:2403
- REDHAT-RHSA-2018:2404
- REDHAT-RHSA-2018:2602
- REDHAT-RHSA-2018:2603
- URL-http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.