Information disclosure in Intel CPUs
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2018-3615 CVE-2018-3620 CVE-2018-3646 |
| CWE-ID | CWE-200 |
| Exploitation vector | Local network |
| Public exploit | N/A |
| Vulnerable software |
8th Generation Intel Core Processors Hardware solutions / Firmware 7th Generation Intel Core Processors Hardware solutions / Firmware 6th Generation Intel Core Processors Hardware solutions / Firmware Intel Xeon Processor E3 v6 Family Hardware solutions / Firmware Intel Xeon Processor E3 v5 Family Hardware solutions / Firmware Intel Xeon Processor D 2100 Hardware solutions / Firmware Intel Xeon Processor D 1500 Hardware solutions / Firmware Intel Xeon Processor E7 v4 Family Hardware solutions / Firmware Intel Xeon Processor E7 v3 Family Hardware solutions / Firmware Intel Xeon Processor E7 v2 Family Hardware solutions / Firmware Intel Xeon Processor E7 Family Hardware solutions / Firmware Intel Xeon Processor E5 v4 Family Hardware solutions / Firmware Intel Xeon Processor E5 v3 Family Hardware solutions / Firmware Intel Xeon Processor E5 v2 Family Hardware solutions / Firmware Intel Xeon Processor E5 Family Hardware solutions / Firmware Intel Xeon Processor E3 v4 Family Hardware solutions / Firmware Intel Xeon Processor E3 v3 Family Hardware solutions / Firmware Intel Xeon Processor E3 v2 Family Hardware solutions / Firmware Intel Xeon Processor E3 Family Hardware solutions / Firmware Intel Xeon processor 7500 series Hardware solutions / Firmware Intel Xeon processor 6500 series Hardware solutions / Firmware Intel Xeon processor 5600 series Hardware solutions / Firmware Intel Xeon processor 5500 series Hardware solutions / Firmware Intel Xeon processor 3600 series Hardware solutions / Firmware Intel Xeon processor 3400 series Hardware solutions / Firmware Intel Core X-series Processor Family for Intel X299 platforms Hardware solutions / Firmware Intel Core X-series Processor Family for Intel X99 platforms Hardware solutions / Firmware 5th generation Intel Core processors Hardware solutions / Firmware 4th generation Intel Core processors Hardware solutions / Firmware 3rd Generation Intel Core Processors Hardware solutions / Firmware 2nd generation Intel Core processors Hardware solutions / Firmware Intel Core M processor family 32nm Hardware solutions / Firmware Intel Core M processor family 45nm Hardware solutions / Firmware Intel Core i7 processor 32nm Hardware solutions / Firmware Intel Core i7 processor 45nm Hardware solutions / Firmware Intel Core i5 processor 32nm Hardware solutions / Firmware Intel Core i5 processor 45nm Hardware solutions / Firmware Intel Core i3 processor 32nm Hardware solutions / Firmware Intel Core i3 processor 45nm Hardware solutions / Firmware Intel Xeon Scalable Processors Hardware solutions / Other hardware appliances |
| Vendor | Intel |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Side-channel attack
EUVDB-ID: #VU14410
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-3615
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to obtain potentially sensitive information.
The vulnerability exists due to an error in systems with microprocessors utilizing speculative execution and Intel® software guard extensions (Intel® SGX). A local attacker can conduct side-channel attack and gain access to potentially sensitive information residing in the L1 data cache from an enclave.
Install update from vendor's website.
Vulnerable software versions8th Generation Intel Core Processors: All versions
7th Generation Intel Core Processors: All versions
6th Generation Intel Core Processors: All versions
Intel Xeon Processor E3 v6 Family: All versions
Intel Xeon Processor E3 v5 Family: All versions
CPE2.3- cpe:2.3:h:intel:8th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:7th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:6th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v6_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v5_family:*:*:*:*:*:*:*:*
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Side-channel attack
EUVDB-ID: #VU14411
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-3620
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to obtain potentially sensitive information.
The vulnerability exists due to an error in systems with microprocessors utilizing speculative execution and address translations . A local attacker can trigger terminal page fault, conduct side-channel attack and gain access to potentially sensitive information residing in the L1 data cache.
Install update from vendor's website.
Vulnerable software versionsIntel Xeon Processor D 2100: All versions
Intel Xeon Processor D 1500: All versions
Intel Xeon Scalable Processors: All versions
Intel Xeon Processor E7 v4 Family: All versions
Intel Xeon Processor E7 v3 Family: All versions
Intel Xeon Processor E7 v2 Family: All versions
Intel Xeon Processor E7 Family: All versions
Intel Xeon Processor E5 v4 Family: All versions
Intel Xeon Processor E5 v3 Family: All versions
Intel Xeon Processor E5 v2 Family: All versions
Intel Xeon Processor E5 Family: All versions
Intel Xeon Processor E3 v4 Family: All versions
Intel Xeon Processor E3 v3 Family: All versions
Intel Xeon Processor E3 v2 Family: All versions
Intel Xeon Processor E3 Family: All versions
Intel Xeon processor 7500 series: All versions
Intel Xeon processor 6500 series: All versions
Intel Xeon processor 5600 series: All versions
Intel Xeon processor 5500 series: All versions
Intel Xeon processor 3600 series: All versions
Intel Xeon processor 3400 series: All versions
Intel Core X-series Processor Family for Intel X299 platforms: All versions
Intel Core X-series Processor Family for Intel X99 platforms: All versions
5th generation Intel Core processors: All versions
4th generation Intel Core processors: All versions
3rd Generation Intel Core Processors: All versions
2nd generation Intel Core processors: All versions
Intel Core M processor family 32nm: All versions
Intel Core M processor family 45nm: All versions
Intel Core i7 processor 32nm: All versions
Intel Core i7 processor 45nm: All versions
Intel Core i5 processor 32nm: All versions
Intel Core i5 processor 45nm: All versions
Intel Core i3 processor 32nm: All versions
Intel Core i3 processor 45nm: All versions
8th Generation Intel Core Processors: All versions
7th Generation Intel Core Processors: All versions
6th Generation Intel Core Processors: All versions
Intel Xeon Processor E3 v6 Family: All versions
Intel Xeon Processor E3 v5 Family: All versions
CPE2.3- cpe:2.3:h:intel:intel_xeon_processor_d_2100:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_d_1500:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_scalable_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_v4_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_v3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_v2_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_v4_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_v3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_v2_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v4_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v2_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_7500_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_6500_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_5600_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_5500_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_3600_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_3400_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_x-series_processor_family_for_intel_x299_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_x-series_processor_family_for_intel_x99_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:5th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:4th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:3rd_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:2nd_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_m_processor_family_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_m_processor_family_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i7_processor_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i7_processor_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i5_processor_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i5_processor_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i3_processor_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i3_processor_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:8th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:7th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:6th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v6_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v5_family:*:*:*:*:*:*:*:*
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Side-channel attack
EUVDB-ID: #VU14412
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-3646
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows an adjacent attacker to obtain potentially sensitive information.
The vulnerability exists due to an error in systems with microprocessors utilizing speculative execution and address translations. An adjacent attacker with guest OS privilege can trigger terminal page fault, conduct side-channel attack and gain access to potentially sensitive information residing in the L1 data cache.
Install update from vendor's website.
Vulnerable software versionsIntel Xeon Processor D 2100: All versions
Intel Xeon Processor D 1500: All versions
Intel Xeon Scalable Processors: All versions
Intel Xeon Processor E7 v4 Family: All versions
Intel Xeon Processor E7 v3 Family: All versions
Intel Xeon Processor E7 v2 Family: All versions
Intel Xeon Processor E7 Family: All versions
Intel Xeon Processor E5 v4 Family: All versions
Intel Xeon Processor E5 v3 Family: All versions
Intel Xeon Processor E5 v2 Family: All versions
Intel Xeon Processor E5 Family: All versions
Intel Xeon Processor E3 v4 Family: All versions
Intel Xeon Processor E3 v3 Family: All versions
Intel Xeon Processor E3 v2 Family: All versions
Intel Xeon Processor E3 Family: All versions
Intel Xeon processor 7500 series: All versions
Intel Xeon processor 6500 series: All versions
Intel Xeon processor 5600 series: All versions
Intel Xeon processor 5500 series: All versions
Intel Xeon processor 3600 series: All versions
Intel Xeon processor 3400 series: All versions
Intel Core X-series Processor Family for Intel X299 platforms: All versions
Intel Core X-series Processor Family for Intel X99 platforms: All versions
5th generation Intel Core processors: All versions
4th generation Intel Core processors: All versions
3rd Generation Intel Core Processors: All versions
2nd generation Intel Core processors: All versions
Intel Core M processor family 32nm: All versions
Intel Core M processor family 45nm: All versions
Intel Core i7 processor 32nm: All versions
Intel Core i7 processor 45nm: All versions
Intel Core i5 processor 32nm: All versions
Intel Core i5 processor 45nm: All versions
Intel Core i3 processor 32nm: All versions
Intel Core i3 processor 45nm: All versions
8th Generation Intel Core Processors: All versions
7th Generation Intel Core Processors: All versions
6th Generation Intel Core Processors: All versions
Intel Xeon Processor E3 v6 Family: All versions
Intel Xeon Processor E3 v5 Family: All versions
CPE2.3- cpe:2.3:h:intel:intel_xeon_processor_d_2100:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_d_1500:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_scalable_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_v4_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_v3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_v2_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e7_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_v4_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_v3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_v2_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e5_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v4_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v2_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_7500_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_6500_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_5600_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_5500_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_3600_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_3400_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_x-series_processor_family_for_intel_x299_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_x-series_processor_family_for_intel_x99_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:5th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:4th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:3rd_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:2nd_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_m_processor_family_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_m_processor_family_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i7_processor_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i7_processor_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i5_processor_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i5_processor_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i3_processor_32nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_core_i3_processor_45nm:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:8th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:7th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:6th_generation_intel_core_processors:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v6_family:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_xeon_processor_e3_v5_family:*:*:*:*:*:*:*:*
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
