CVE-2018-3640 - Vulnerability Details

Description

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.

Published: 2018-05-22

Score: 5.6 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Intel Corporation

Multiple

affected

Version	Status	Constraints
`Multiple`	affected	—

Configuration 1 [-]

OR	cpe:2.3:h:intel:atom_c:c2308:::::::*
	cpe:2.3:h:intel:atom_c:c3308:::::::*
	cpe:2.3:h:intel:atom_c:c3338:::::::*
	cpe:2.3:h:intel:atom_c:c3508:::::::*
	cpe:2.3:h:intel:atom_c:c3538:::::::*
	cpe:2.3:h:intel:atom_c:c3558:::::::*
	cpe:2.3:h:intel:atom_c:c3708:::::::*
	cpe:2.3:h:intel:atom_c:c3750:::::::*
	cpe:2.3:h:intel:atom_c:c3758:::::::*
	cpe:2.3:h:intel:atom_c:c3808:::::::*
	cpe:2.3:h:intel:atom_c:c3830:::::::*
	cpe:2.3:h:intel:atom_c:c3850:::::::*
	cpe:2.3:h:intel:atom_c:c3858:::::::*
	cpe:2.3:h:intel:atom_c:c3950:::::::*
	cpe:2.3:h:intel:atom_c:c3955:::::::*
	cpe:2.3:h:intel:atom_c:c3958:::::::*
	cpe:2.3:h:intel:atom_e:e3805:::::::*
	cpe:2.3:h:intel:atom_e:e3815:::::::*
	cpe:2.3:h:intel:atom_e:e3825:::::::*
	cpe:2.3:h:intel:atom_e:e3826:::::::*
	cpe:2.3:h:intel:atom_e:e3827:::::::*
	cpe:2.3:h:intel:atom_e:e3845:::::::*
	cpe:2.3:h:intel:atom_z:z2420:::::::*
	cpe:2.3:h:intel:atom_z:z2460:::::::*
	cpe:2.3:h:intel:atom_z:z2480:::::::*
	cpe:2.3:h:intel:atom_z:z2520:::::::*
	cpe:2.3:h:intel:atom_z:z2560:::::::*
	cpe:2.3:h:intel:atom_z:z2580:::::::*
	cpe:2.3:h:intel:atom_z:z2760:::::::*
	cpe:2.3:h:intel:atom_z:z3460:::::::*
	cpe:2.3:h:intel:atom_z:z3480:::::::*
	cpe:2.3:h:intel:atom_z:z3530:::::::*
	cpe:2.3:h:intel:atom_z:z3560:::::::*
	cpe:2.3:h:intel:atom_z:z3570:::::::*
	cpe:2.3:h:intel:atom_z:z3580:::::::*
	cpe:2.3:h:intel:atom_z:z3590:::::::*
	cpe:2.3:h:intel:atom_z:z3735d:::::::*
	cpe:2.3:h:intel:atom_z:z3735e:::::::*
	cpe:2.3:h:intel:atom_z:z3735f:::::::*
	cpe:2.3:h:intel:atom_z:z3735g:::::::*
	cpe:2.3:h:intel:atom_z:z3736f:::::::*
	cpe:2.3:h:intel:atom_z:z3736g:::::::*
	cpe:2.3:h:intel:atom_z:z3740:::::::*
	cpe:2.3:h:intel:atom_z:z3740d:::::::*
	cpe:2.3:h:intel:atom_z:z3745:::::::*
	cpe:2.3:h:intel:atom_z:z3745d:::::::*
	cpe:2.3:h:intel:atom_z:z3770:::::::*
	cpe:2.3:h:intel:atom_z:z3770d:::::::*
	cpe:2.3:h:intel:atom_z:z3775:::::::*
	cpe:2.3:h:intel:atom_z:z3775d:::::::*
	cpe:2.3:h:intel:atom_z:z3785:::::::*
	cpe:2.3:h:intel:atom_z:z3795:::::::*
	cpe:2.3:h:intel:celeron_j:j3455:::::::*
	cpe:2.3:h:intel:celeron_j:j4005:::::::*
	cpe:2.3:h:intel:celeron_j:j4105:::::::*
	cpe:2.3:h:intel:celeron_n:n3450:::::::*
	cpe:2.3:h:intel:core_i3:32nm:::::::*
	cpe:2.3:h:intel:core_i3:45nm:::::::*
	cpe:2.3:h:intel:core_i5:32nm:::::::*
	cpe:2.3:h:intel:core_i5:45nm:::::::*
	cpe:2.3:h:intel:core_i7:32nm:::::::*
	cpe:2.3:h:intel:core_i7:45nm:::::::*
	cpe:2.3:h:intel:core_m:32nm:::::::*
	cpe:2.3:h:intel:core_m:45nm:::::::*
cpe:2.3:h:intel:pentium:n4000:::::::*
cpe:2.3:h:intel:pentium:n4100:::::::*
cpe:2.3:h:intel:pentium:n4200:::::::*
cpe:2.3:h:intel:pentium_j:j4205:::::::*
cpe:2.3:h:intel:pentium_silver:j5005:::::::*
cpe:2.3:h:intel:pentium_silver:n5000:::::::*
cpe:2.3:h:intel:xeon_e-1105c:-:::::::*
cpe:2.3:h:intel:xeon_e3:125c_:::::::*
cpe:2.3:h:intel:xeon_e3:1220_:::::::*
cpe:2.3:h:intel:xeon_e3:1275_:::::::*
cpe:2.3:h:intel:xeon_e3:1505m_v6:::::::*
cpe:2.3:h:intel:xeon_e3:1515m_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1535m_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1535m_v6:::::::*
cpe:2.3:h:intel:xeon_e3:1545m_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1558l_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1565l_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1575m_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1578l_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1585_v5:::::::*
cpe:2.3:h:intel:xeon_e3:1585l_v5:::::::*
cpe:2.3:h:intel:xeon_e3:3600:::::::*
cpe:2.3:h:intel:xeon_e3:5600:::::::*
cpe:2.3:h:intel:xeon_e3:7500:::::::*
cpe:2.3:h:intel:xeon_e3:e5502:::::::*
cpe:2.3:h:intel:xeon_e3:e5503:::::::*
cpe:2.3:h:intel:xeon_e3:e5504:::::::*
cpe:2.3:h:intel:xeon_e3:e5506:::::::*
cpe:2.3:h:intel:xeon_e3:e5507:::::::*
cpe:2.3:h:intel:xeon_e3:e5520:::::::*
cpe:2.3:h:intel:xeon_e3:e5530:::::::*
cpe:2.3:h:intel:xeon_e3:e5540:::::::*
cpe:2.3:h:intel:xeon_e3:e6510:::::::*
cpe:2.3:h:intel:xeon_e3:e6540:::::::*
cpe:2.3:h:intel:xeon_e3:e6550:::::::*
cpe:2.3:h:intel:xeon_e3:l3403:::::::*
cpe:2.3:h:intel:xeon_e3:l3406:::::::*
cpe:2.3:h:intel:xeon_e3:l3426:::::::*
cpe:2.3:h:intel:xeon_e3:l5506:::::::*
cpe:2.3:h:intel:xeon_e3:l5508_:::::::*
cpe:2.3:h:intel:xeon_e3:l5518_:::::::*
cpe:2.3:h:intel:xeon_e3:l5520:::::::*
cpe:2.3:h:intel:xeon_e3:l5530:::::::*
cpe:2.3:h:intel:xeon_e3:w5580:::::::*
cpe:2.3:h:intel:xeon_e3:w5590:::::::*
cpe:2.3:h:intel:xeon_e3:x3430:::::::*
cpe:2.3:h:intel:xeon_e3:x3440:::::::*
cpe:2.3:h:intel:xeon_e3:x3450:::::::*
cpe:2.3:h:intel:xeon_e3:x3460:::::::*
cpe:2.3:h:intel:xeon_e3:x3470:::::::*
cpe:2.3:h:intel:xeon_e3:x3480:::::::*
cpe:2.3:h:intel:xeon_e3:x5550:::::::*
cpe:2.3:h:intel:xeon_e3:x5560:::::::*
cpe:2.3:h:intel:xeon_e3:x5570:::::::*
cpe:2.3:h:intel:xeon_e3_1105c_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1125c_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1220_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1220_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1220_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1220_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_12201:-:::::::*
cpe:2.3:h:intel:xeon_e3_12201_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1220l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1225:-:::::::*
cpe:2.3:h:intel:xeon_e3_1225_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1225_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1225_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1225_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1226_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1230:-:::::::*
cpe:2.3:h:intel:xeon_e3_1230_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1230_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1230_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1230_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1230l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1231_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1235:-:::::::*
cpe:2.3:h:intel:xeon_e3_1235l_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1240l_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1241_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1245:-:::::::*
cpe:2.3:h:intel:xeon_e3_1245_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1245_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1245_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1245_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1246_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1258l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e3_1260l:-:::::::*
cpe:2.3:h:intel:xeon_e3_1260l_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1265l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1265l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1265l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e3_1268l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1268l_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1270:-:::::::*
cpe:2.3:h:intel:xeon_e3_1270_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1270_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1270_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1270_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1271_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1275_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1275_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1275_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1275_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1275l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1276_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1278l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e3_1280:-:::::::*
cpe:2.3:h:intel:xeon_e3_1280_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1280_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1280_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1280_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1281_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1285_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1285_v4:-:::::::*
cpe:2.3:h:intel:xeon_e3_1285_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1285l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1285l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e3_1286_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1286l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e3_1290:-:::::::*
cpe:2.3:h:intel:xeon_e3_1290_v2:-:::::::*
cpe:2.3:h:intel:xeon_e3_1501l_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1501m_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1505l_v5:-:::::::*
cpe:2.3:h:intel:xeon_e3_1505l_v6:-:::::::*
cpe:2.3:h:intel:xeon_e3_1505m_v5:-:::::::*
cpe:2.3:h:intel:xeon_e5:2650l_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2658:::::::*
cpe:2.3:h:intel:xeon_e5:2658_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2658_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2658_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2658a_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2660:::::::*
cpe:2.3:h:intel:xeon_e5:2660_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2660_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2660_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2665:::::::*
cpe:2.3:h:intel:xeon_e5:2667:::::::*
cpe:2.3:h:intel:xeon_e5:2667_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2667_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2667_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2670:::::::*
cpe:2.3:h:intel:xeon_e5:2670_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2670_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2680:::::::*
cpe:2.3:h:intel:xeon_e5:2680_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2680_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2680_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2683_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2683_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2687w:::::::*
cpe:2.3:h:intel:xeon_e5:2687w_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2687w_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2687w_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2690:::::::*
cpe:2.3:h:intel:xeon_e5:2690_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2690_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2690_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2695_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2695_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2695_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2697_v2:::::::*
cpe:2.3:h:intel:xeon_e5:2697_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2697_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2697a_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2698_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2698_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2699_v3:::::::*
cpe:2.3:h:intel:xeon_e5:2699_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2699a_v4:::::::*
cpe:2.3:h:intel:xeon_e5:2699r_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4603:::::::*
cpe:2.3:h:intel:xeon_e5:4603_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4607:::::::*
cpe:2.3:h:intel:xeon_e5:4607_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4610:::::::*
cpe:2.3:h:intel:xeon_e5:4610_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4610_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4610_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4617:::::::*
cpe:2.3:h:intel:xeon_e5:4620:::::::*
cpe:2.3:h:intel:xeon_e5:4620_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4620_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4620_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4624l_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4627_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4627_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4627_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4628l_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4640:::::::*
cpe:2.3:h:intel:xeon_e5:4640_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4640_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4640_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4648_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4650:::::::*
cpe:2.3:h:intel:xeon_e5:4650_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4650_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4650_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4650l:::::::*
cpe:2.3:h:intel:xeon_e5:4655_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4655_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4657l_v2:::::::*
cpe:2.3:h:intel:xeon_e5:4660_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4660_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4667_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4667_v4:::::::*
cpe:2.3:h:intel:xeon_e5:4669_v3:::::::*
cpe:2.3:h:intel:xeon_e5:4669_v4:::::::*
cpe:2.3:h:intel:xeon_e5_1428l:-:::::::*
cpe:2.3:h:intel:xeon_e5_1428l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_1428l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_1620:-:::::::*
cpe:2.3:h:intel:xeon_e5_1620_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_1620_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_1620_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_1630_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_1630_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_1650:-:::::::*
cpe:2.3:h:intel:xeon_e5_1650_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_1650_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_1650_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_1660:-:::::::*
cpe:2.3:h:intel:xeon_e5_1660_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_1660_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_1660_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_1680_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_1680_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2403:-:::::::*
cpe:2.3:h:intel:xeon_e5_2403_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2407:-:::::::*
cpe:2.3:h:intel:xeon_e5_2407_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2408l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2418l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2418l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2418l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2420:-:::::::*
cpe:2.3:h:intel:xeon_e5_2420_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2428l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2428l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2428l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2430:-:::::::*
cpe:2.3:h:intel:xeon_e5_2430_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2430l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2430l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2438l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2440:-:::::::*
cpe:2.3:h:intel:xeon_e5_2440_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2448l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2448l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2450:-:::::::*
cpe:2.3:h:intel:xeon_e5_2450_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2450l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2450l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2470:-:::::::*
cpe:2.3:h:intel:xeon_e5_2470_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2603:-:::::::*
cpe:2.3:h:intel:xeon_e5_2603_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2603_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2603_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2608l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2608l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2609:-:::::::*
cpe:2.3:h:intel:xeon_e5_2609_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2609_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2609_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2618l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2618l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2618l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2620:-:::::::*
cpe:2.3:h:intel:xeon_e5_2620_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2620_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2620_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2623_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2623_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2628l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2628l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2628l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2630l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2637:-:::::::*
cpe:2.3:h:intel:xeon_e5_2637_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2637_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2637_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2640:-:::::::*
cpe:2.3:h:intel:xeon_e5_2640_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2640_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2640_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2643:-:::::::*
cpe:2.3:h:intel:xeon_e5_2643_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2643_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2643_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2648l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2648l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2648l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2648l_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650_v3:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650_v4:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650l:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650l_v2:-:::::::*
cpe:2.3:h:intel:xeon_e5_2650l_v3:-:::::::*
cpe:2.3:h:intel:xeon_e7:2803:::::::*
cpe:2.3:h:intel:xeon_e7:2820:::::::*
cpe:2.3:h:intel:xeon_e7:2830:::::::*
cpe:2.3:h:intel:xeon_e7:2850:::::::*
cpe:2.3:h:intel:xeon_e7:2850_v2:::::::*
cpe:2.3:h:intel:xeon_e7:2860:::::::*
cpe:2.3:h:intel:xeon_e7:2870:::::::*
cpe:2.3:h:intel:xeon_e7:2870_v2:::::::*
cpe:2.3:h:intel:xeon_e7:2880_v2:::::::*
cpe:2.3:h:intel:xeon_e7:2890_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4807:::::::*
cpe:2.3:h:intel:xeon_e7:4809_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4809_v3:::::::*
cpe:2.3:h:intel:xeon_e7:4809_v4:::::::*
cpe:2.3:h:intel:xeon_e7:4820:::::::*
cpe:2.3:h:intel:xeon_e7:4820_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4820_v3:::::::*
cpe:2.3:h:intel:xeon_e7:4820_v4:::::::*
cpe:2.3:h:intel:xeon_e7:4830:::::::*
cpe:2.3:h:intel:xeon_e7:4830_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4830_v3:::::::*
cpe:2.3:h:intel:xeon_e7:4830_v4:::::::*
cpe:2.3:h:intel:xeon_e7:4850:::::::*
cpe:2.3:h:intel:xeon_e7:4850_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4850_v3:::::::*
cpe:2.3:h:intel:xeon_e7:4850_v4:::::::*
cpe:2.3:h:intel:xeon_e7:4860:::::::*
cpe:2.3:h:intel:xeon_e7:4860_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4870:::::::*
cpe:2.3:h:intel:xeon_e7:4870_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4880_v2:::::::*
cpe:2.3:h:intel:xeon_e7:4890_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8830:::::::*
cpe:2.3:h:intel:xeon_e7:8837:::::::*
cpe:2.3:h:intel:xeon_e7:8850:::::::*
cpe:2.3:h:intel:xeon_e7:8850_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8857_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8860:::::::*
cpe:2.3:h:intel:xeon_e7:8860_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8860_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8867_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8867_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8867l:::::::*
cpe:2.3:h:intel:xeon_e7:8870:::::::*
cpe:2.3:h:intel:xeon_e7:8870_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8870_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8870_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8880_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8880_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8880_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8880l_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8880l_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8890_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8890_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8890_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8891_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8891_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8891_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8893_v2:::::::*
cpe:2.3:h:intel:xeon_e7:8893_v3:::::::*
cpe:2.3:h:intel:xeon_e7:8893_v4:::::::*
cpe:2.3:h:intel:xeon_e7:8894_v4:::::::*
cpe:2.3:h:intel:xeon_gold:5115:::::::*
cpe:2.3:h:intel:xeon_gold:85115:::::::*
cpe:2.3:h:intel:xeon_gold:85118:::::::*
cpe:2.3:h:intel:xeon_gold:85119t:::::::*
cpe:2.3:h:intel:xeon_gold:85120:::::::*
cpe:2.3:h:intel:xeon_gold:85120t:::::::*
cpe:2.3:h:intel:xeon_gold:85122:::::::*
cpe:2.3:h:intel:xeon_gold:86126:::::::*
cpe:2.3:h:intel:xeon_gold:86126f:::::::*
cpe:2.3:h:intel:xeon_gold:86126t:::::::*
cpe:2.3:h:intel:xeon_gold:86128:::::::*
cpe:2.3:h:intel:xeon_gold:86130:::::::*
cpe:2.3:h:intel:xeon_gold:86130f:::::::*
cpe:2.3:h:intel:xeon_gold:86130t:::::::*
cpe:2.3:h:intel:xeon_gold:86132:::::::*
cpe:2.3:h:intel:xeon_gold:86134:::::::*
cpe:2.3:h:intel:xeon_gold:86134m:::::::*
cpe:2.3:h:intel:xeon_gold:86136:::::::*
cpe:2.3:h:intel:xeon_gold:86138:::::::*
cpe:2.3:h:intel:xeon_gold:86138f:::::::*
cpe:2.3:h:intel:xeon_gold:86138t:::::::*
cpe:2.3:h:intel:xeon_gold:86140:::::::*
cpe:2.3:h:intel:xeon_gold:86140m:::::::*
cpe:2.3:h:intel:xeon_gold:86142:::::::*
cpe:2.3:h:intel:xeon_gold:86142f:::::::*
cpe:2.3:h:intel:xeon_gold:86142m:::::::*
cpe:2.3:h:intel:xeon_gold:86144:::::::*
cpe:2.3:h:intel:xeon_gold:86146:::::::*
cpe:2.3:h:intel:xeon_gold:86148:::::::*
cpe:2.3:h:intel:xeon_gold:86148f:::::::*
cpe:2.3:h:intel:xeon_gold:86150:::::::*
cpe:2.3:h:intel:xeon_gold:86152:::::::*
cpe:2.3:h:intel:xeon_gold:86154:::::::*
cpe:2.3:h:intel:xeon_platinum:8153:::::::*
cpe:2.3:h:intel:xeon_platinum:8156:::::::*
cpe:2.3:h:intel:xeon_platinum:8158:::::::*
cpe:2.3:h:intel:xeon_platinum:8160:::::::*
cpe:2.3:h:intel:xeon_platinum:8160f:::::::*
cpe:2.3:h:intel:xeon_platinum:8160m:::::::*
cpe:2.3:h:intel:xeon_platinum:8160t:::::::*
cpe:2.3:h:intel:xeon_platinum:8164:::::::*
cpe:2.3:h:intel:xeon_platinum:8168:::::::*
cpe:2.3:h:intel:xeon_platinum:8170:::::::*
cpe:2.3:h:intel:xeon_platinum:8170m:::::::*
cpe:2.3:h:intel:xeon_platinum:8176:::::::*
cpe:2.3:h:intel:xeon_platinum:8176f:::::::*
cpe:2.3:h:intel:xeon_platinum:8176m:::::::*
cpe:2.3:h:intel:xeon_platinum:8180:::::::*
cpe:2.3:h:intel:xeon_silver:4108:::::::*
cpe:2.3:h:intel:xeon_silver:4109t:::::::*
cpe:2.3:h:intel:xeon_silver:4110:::::::*
cpe:2.3:h:intel:xeon_silver:4112:::::::*
cpe:2.3:h:intel:xeon_silver:4114:::::::*
cpe:2.3:h:intel:xeon_silver:4114t:::::::*
cpe:2.3:h:intel:xeon_silver:4116:::::::*
cpe:2.3:h:intel:xeon_silver:4116t:::::::*

Configuration 2 [-]

OR	cpe:2.3:h:arm:cortex-a:15:::::::*
	cpe:2.3:h:arm:cortex-a:57:::::::*
	cpe:2.3:h:arm:cortex-a:72:::::::*

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-1446-1	intel-microcode security update
Debian DLA	DLA-1506-1	intel-microcode security update
Debian DSA	DSA-4273-1	intel-microcode security update
Debian DSA	DSA-4273-2	intel-microcode security update
EUVD	EUVD-2018-15494	Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.
Ubuntu USN	USN-3756-1	Intel Microcode vulnerabilities

No CVSS v4.0

No CVSS v3.1

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.00902.

Key SSVC decision points have not yet been added.

References

Link	Providers
http://support.lenovo.com/us/en/solutions/LEN-22133
http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html
http://www.securityfocus.com/bid/104228
http://www.securitytracker.com/id/1040949
http://www.securitytracker.com/id/1042004
https://access.redhat.com/solutions/3452311
https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf
https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability
https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html
https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html
https://nvd.nist.gov/vuln/detail/CVE-2018-3640
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180013
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0005
https://security.netapp.com/advisory/ntap-20180521-0001/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel
https://usn.ubuntu.com/3756-1/
https://www.cve.org/CVERecord?id=CVE-2018-3640
https://www.debian.org/security/2018/dsa-4273
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html
https://www.kb.cert.org/vuls/id/180049
https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006
https://www.synology.com/support/security/Synology_SA_18_23
https://www.us-cert.gov/ncas/alerts/TA18-141A

History

No history.

Subscriptions

Arm Cortex-a

Intel Atom C Atom E Atom Z Celeron J Celeron N Core I3 Core I5 Core I7 Core M Pentium Pentium J Pentium Silver Xeon E-1105c Xeon E3 Xeon E3 1105c V2 Xeon E3 1125c V2 Xeon E3 12201 Xeon E3 12201 V2 Xeon E3 1220 V2 Xeon E3 1220 V3 Xeon E3 1220 V5 Xeon E3 1220 V6 Xeon E3 1220l V3 Xeon E3 1225 Xeon E3 1225 V2 Xeon E3 1225 V3 Xeon E3 1225 V5 Xeon E3 1225 V6 Xeon E3 1226 V3 Xeon E3 1230 Xeon E3 1230 V2 Xeon E3 1230 V3 Xeon E3 1230 V5 Xeon E3 1230 V6 Xeon E3 1230l V3 Xeon E3 1231 V3 Xeon E3 1235 Xeon E3 1235l V5 Xeon E3 1240 Xeon E3 1240 V2 Xeon E3 1240 V3 Xeon E3 1240 V5 Xeon E3 1240 V6 Xeon E3 1240l V3 Xeon E3 1240l V5 Xeon E3 1241 V3 Xeon E3 1245 Xeon E3 1245 V2 Xeon E3 1245 V3 Xeon E3 1245 V5 Xeon E3 1245 V6 Xeon E3 1246 V3 Xeon E3 1258l V4 Xeon E3 1260l Xeon E3 1260l V5 Xeon E3 1265l V2 Xeon E3 1265l V3 Xeon E3 1265l V4 Xeon E3 1268l V3 Xeon E3 1268l V5 Xeon E3 1270 Xeon E3 1270 V2 Xeon E3 1270 V3 Xeon E3 1270 V5 Xeon E3 1270 V6 Xeon E3 1271 V3 Xeon E3 1275 V2 Xeon E3 1275 V3 Xeon E3 1275 V5 Xeon E3 1275 V6 Xeon E3 1275l V3 Xeon E3 1276 V3 Xeon E3 1278l V4 Xeon E3 1280 Xeon E3 1280 V2 Xeon E3 1280 V3 Xeon E3 1280 V5 Xeon E3 1280 V6 Xeon E3 1281 V3 Xeon E3 1285 V3 Xeon E3 1285 V4 Xeon E3 1285 V6 Xeon E3 1285l V3 Xeon E3 1285l V4 Xeon E3 1286 V3 Xeon E3 1286l V3 Xeon E3 1290 Xeon E3 1290 V2 Xeon E3 1501l V6 Xeon E3 1501m V6 Xeon E3 1505l V5 Xeon E3 1505l V6 Xeon E3 1505m V5 Xeon E5 Xeon E5 1428l Xeon E5 1428l V2 Xeon E5 1428l V3 Xeon E5 1620 Xeon E5 1620 V2 Xeon E5 1620 V3 Xeon E5 1620 V4 Xeon E5 1630 V3 Xeon E5 1630 V4 Xeon E5 1650 Xeon E5 1650 V2 Xeon E5 1650 V3 Xeon E5 1650 V4 Xeon E5 1660 Xeon E5 1660 V2 Xeon E5 1660 V3 Xeon E5 1660 V4 Xeon E5 1680 V3 Xeon E5 1680 V4 Xeon E5 2403 Xeon E5 2403 V2 Xeon E5 2407 Xeon E5 2407 V2 Xeon E5 2408l V3 Xeon E5 2418l Xeon E5 2418l V2 Xeon E5 2418l V3 Xeon E5 2420 Xeon E5 2420 V2 Xeon E5 2428l Xeon E5 2428l V2 Xeon E5 2428l V3 Xeon E5 2430 Xeon E5 2430 V2 Xeon E5 2430l Xeon E5 2430l V2 Xeon E5 2438l V3 Xeon E5 2440 Xeon E5 2440 V2 Xeon E5 2448l Xeon E5 2448l V2 Xeon E5 2450 Xeon E5 2450 V2 Xeon E5 2450l Xeon E5 2450l V2 Xeon E5 2470 Xeon E5 2470 V2 Xeon E5 2603 Xeon E5 2603 V2 Xeon E5 2603 V3 Xeon E5 2603 V4 Xeon E5 2608l V3 Xeon E5 2608l V4 Xeon E5 2609 Xeon E5 2609 V2 Xeon E5 2609 V3 Xeon E5 2609 V4 Xeon E5 2618l V2 Xeon E5 2618l V3 Xeon E5 2618l V4 Xeon E5 2620 Xeon E5 2620 V2 Xeon E5 2620 V3 Xeon E5 2620 V4 Xeon E5 2623 V3 Xeon E5 2623 V4 Xeon E5 2628l V2 Xeon E5 2628l V3 Xeon E5 2628l V4 Xeon E5 2630 Xeon E5 2630 V2 Xeon E5 2630 V3 Xeon E5 2630 V4 Xeon E5 2630l Xeon E5 2630l V2 Xeon E5 2630l V3 Xeon E5 2630l V4 Xeon E5 2637 Xeon E5 2637 V2 Xeon E5 2637 V3 Xeon E5 2637 V4 Xeon E5 2640 Xeon E5 2640 V2 Xeon E5 2640 V3 Xeon E5 2640 V4 Xeon E5 2643 Xeon E5 2643 V2 Xeon E5 2643 V3 Xeon E5 2643 V4 Xeon E5 2648l Xeon E5 2648l V2 Xeon E5 2648l V3 Xeon E5 2648l V4 Xeon E5 2650 Xeon E5 2650 V2 Xeon E5 2650 V3 Xeon E5 2650 V4 Xeon E5 2650l Xeon E5 2650l V2 Xeon E5 2650l V3 Xeon E7 Xeon Gold Xeon Platinum Xeon Silver

MITRE

Status: PUBLISHED

Assigner: intel

Published: 2018-05-22T12:00:00.000Z

Updated: 2024-09-16T19:31:35.612Z

Reserved: 2017-12-28T00:00:00.000Z

Link: CVE-2018-3640

Vulnrichment

No data.

NVD

Status : Modified

Published: 2018-05-22T12:29:00.327

Modified: 2024-11-21T04:05:49.447

Link: CVE-2018-3640

Redhat

Severity : Moderate

Publid Date: 2018-05-21T21:00:00Z

Links: CVE-2018-3640 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object