{"containers": {"cna": {"affected": [{"product": "Intel(R) Processors", "vendor": "n/a", "versions": [{"status": "affected", "version": "See references"}]}], "descriptions": [{"lang": "en", "value": "Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access."}], "problemTypes": [{"descriptions": [{"description": "information disclosure", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-05-11T12:06:29", "orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce", "shortName": "intel"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://security.netapp.com/advisory/ntap-20201113-0006/"}, {"name": "FEDORA-2020-14fda1bf85", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/"}, {"name": "[debian-lts-announce] 20210205 [SECURITY] [DLA 2546-1] intel-microcode security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secure@intel.com", "ID": "CVE-2020-8698", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Intel(R) Processors", "version": {"version_data": [{"version_value": "See references"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "information disclosure"}]}]}, "references": {"reference_data": [{"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381", "refsource": "MISC", "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381"}, {"name": "https://security.netapp.com/advisory/ntap-20201113-0006/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20201113-0006/"}, {"name": "FEDORA-2020-14fda1bf85", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/"}, {"name": "[debian-lts-announce] 20210205 [SECURITY] [DLA 2546-1] intel-microcode security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html"}, {"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf", "refsource": "CONFIRM", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T10:03:46.326Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://security.netapp.com/advisory/ntap-20201113-0006/"}, {"name": "FEDORA-2020-14fda1bf85", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/"}, {"name": "[debian-lts-announce] 20210205 [SECURITY] [DLA 2546-1] intel-microcode security update", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce", "assignerShortName": "intel", "cveId": "CVE-2020-8698", "datePublished": "2020-11-12T18:01:55", "dateReserved": "2020-02-06T00:00:00", "dateUpdated": "2024-08-04T10:03:46.326Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:intel:microcode:-:*:*:*:*:*:*:*", "matchCriteriaId": "B78FF9EC-BB2A-4352-9BE7-EFA749C99A9D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:intel:core_i3-1000g1:-:*:*:*:*:*:*:*", "matchCriteriaId": "6DAA00D4-A8AA-44AA-9609-0A40BD4FB2E0", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i3-1000g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "EF64D95C-653A-4864-A572-CD0A64B6CDF3", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i3-1005g1:-:*:*:*:*:*:*:*", "matchCriteriaId": "30B2F570-1DD9-49C7-BB72-0EA0E9A417C4", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i3-1110g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "2C60AF0D-983D-454E-8940-209C471DC041", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i3-1115g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "9F26C6DA-ED6B-444A-A63A-5155FCA4F0DB", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i3-1120g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "B0D9B687-C3EE-4AF5-B9BE-7F0698D0F258", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i3-1125g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "114DF43C-839F-4066-AA30-8DC16B1D6687", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1030g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "F5F6F725-217C-48FF-86DD-E91A24156121", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1030g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "365696BF-CE3D-4CE6-92A8-413DDE43774E", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1035g1:-:*:*:*:*:*:*:*", "matchCriteriaId": "BE048AEB-094D-4102-9DBF-488FEB53FF89", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1035g4:-:*:*:*:*:*:*:*", "matchCriteriaId": "3907FA31-6F1A-45BA-ACF3-1C8EE05D9BA0", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1035g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "D48D9F5F-95BD-4F6B-8A37-D1CAA7D2DB25", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1130g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "158CC66D-32E5-4396-8E5D-4D90EE9AB62C", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i5-1135g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "E84F0381-296A-408E-90D4-A316EE894A9D", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i7-1060g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "B6CDC1BE-6A64-425C-AF2C-7DFB28FB604A", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i7-1065g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "2243674B-E505-4FED-B063-953A1569EA30", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i7-1160g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "D8F5409D-23C7-4CA9-951C-8EEEAE31DFDE", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i7-1165g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "5601E40A-96E1-4321-9682-055A1C607488", "vulnerable": false}, {"criteria": "cpe:2.3:h:intel:core_i7-1185g7:-:*:*:*:*:*:*:*", "matchCriteriaId": "12ADA9A2-6E64-4F17-B369-816639F0D3BF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*", "matchCriteriaId": "1FE996B1-6951-4F85-AA58-B99A379D2163", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:netapp:hci_compute_node_bios:-:*:*:*:*:*:*:*", "matchCriteriaId": "7C61DF9A-ABDE-44A2-A060-B088428D5064", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*", "matchCriteriaId": "AD7447BC-F315-4298-A822-549942FC118B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:netapp:hci_storage_node_bios:-:*:*:*:*:*:*:*", "matchCriteriaId": "17C3B32E-E1F2-446A-B8AE-5F3E285BD5B2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*", "matchCriteriaId": "02DEB4FB-A21D-4CB1-B522-EEE5093E8521", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:netapp:solidfire_bios:-:*:*:*:*:*:*:*", "matchCriteriaId": "C3BCF7CA-6C05-4FD5-A965-0F038F63D70A", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:netapp:solidfire:-:*:*:*:*:*:*:*", "matchCriteriaId": "B4588E5F-58E1-4C82-9551-8EAD5FFE08B3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F5320759-AAAB-4FEA-99AB-51A7F7EE9F58", "versionEndExcluding": "22.01.08", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_field_pg_m5:-:*:*:*:*:*:*:*", "matchCriteriaId": "506DEE00-30D2-4E29-9645-757EB8778C0F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_field_pg_m6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "480C5657-5C05-40F5-B76A-E67119727ED8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_field_pg_m6:-:*:*:*:*:*:*:*", "matchCriteriaId": "8F3C3E60-7C36-4F5D-B454-97C9D0FD9459", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc427e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8F6CA254-45AF-497D-9D1D-0CF4A8922883", "versionEndExcluding": "21.01.15", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc427e:-:*:*:*:*:*:*:*", "matchCriteriaId": "A40D0CDB-7BE6-491F-B730-3B4E10CA159A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc477e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5AECF7C4-3FF7-4663-A49C-9DB91BA5C28E", "versionEndExcluding": "21.01.15", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc477e:-:*:*:*:*:*:*:*", "matchCriteriaId": "FDF9D4C3-1892-48FA-95B4-835B636A4005", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc477e_pro_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "26B17683-E061-4CB9-BB8E-9EC8612DA1A1", "versionEndExcluding": "21.01.15", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc477e_pro:-:*:*:*:*:*:*:*", "matchCriteriaId": "3FC5CE20-7D08-4496-A857-C3A4BD0AB1AC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc627e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6779ADD8-298D-4FF4-8AD3-82E995B2E144", "versionEndExcluding": "25.02.08", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc627e:-:*:*:*:*:*:*:*", "matchCriteriaId": "9D9AF082-8345-4BE1-B1FC-6E0316BB833B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc647e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5D3BECCA-5783-4B3C-B659-21160B4D2726", "versionEndExcluding": "25.02.08", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc647e:-:*:*:*:*:*:*:*", "matchCriteriaId": "E430C4C5-D887-47C6-B50F-66EEE9519151", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc677e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BF2E9EAA-2D26-4271-B2A3-CA3BB71D0149", "versionEndExcluding": "25.02.08", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc677e:-:*:*:*:*:*:*:*", "matchCriteriaId": "5F9FA42D-B2F0-456F-89B7-6A5789787FBA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_ipc847e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9C5CB316-59B9-4DDB-A8B8-14D8BCD991CE", "versionEndExcluding": "25.02.08", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_ipc847e:-:*:*:*:*:*:*:*", "matchCriteriaId": "1157418C-14C4-43C4-B63E-7E98D868A94F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_itp1000_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4ABF49D4-34CE-4DEA-AA2E-A40A53472D1F", "versionEndExcluding": "23.01.08", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_itp1000:-:*:*:*:*:*:*:*", "matchCriteriaId": "187C6D51-5B86-484D-AE0F-26D1C9465580", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access."}, {"lang": "es", "value": "Un aislamiento inapropiado de los recursos compartidos en algunos Intel\u00ae Processors, puede habilitar a un usuario autenticado para permitir potencialmente una divulgaci\u00f3n de informaci\u00f3n por medio de un acceso local"}], "id": "CVE-2020-8698", "lastModified": "2024-11-21T05:39:17.130", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-11-12T18:15:16.783", "references": [{"source": "secure@intel.com", "tags": ["Third Party Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf"}, {"source": "secure@intel.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html"}, {"source": "secure@intel.com", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/"}, {"source": "secure@intel.com", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20201113-0006/"}, {"source": "secure@intel.com", "tags": ["Vendor Advisory"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20201113-0006/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381"}], "sourceIdentifier": "secure@intel.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-668"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank Intel for reporting this issue.", "affected_release": [{"advisory": "RHSA-2020:5084", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "microcode_ctl-2:1.17-33.31.el6_10", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2020-11-11T00:00:00Z"}, {"advisory": "RHSA-2020:5189", "cpe": "cpe:/o:redhat:rhel_aus:6.5", "package": "microcode_ctl-2:1.17-17.34.el6_5", "product_name": "Red Hat Enterprise Linux 6.5 Advanced Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2020:5184", "cpe": "cpe:/o:redhat:rhel_aus:6.6", "package": "microcode_ctl-2:1.17-19.32.el6_6", "product_name": "Red Hat Enterprise Linux 6.6 Advanced Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2020:5083", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "microcode_ctl-2:2.1-73.2.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2020-11-11T00:00:00Z"}, {"advisory": "RHSA-2021:3028", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "microcode_ctl-2:2.1-73.11.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2021-08-09T00:00:00Z"}, {"advisory": "RHSA-2020:5188", "cpe": "cpe:/o:redhat:rhel_aus:7.2", "package": "microcode_ctl-2:2.1-12.34.el7_2", "product_name": "Red Hat Enterprise Linux 7.2 Advanced Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3323", "cpe": "cpe:/o:redhat:rhel_aus:7.2", "package": "microcode_ctl-2:2.1-12.39.el7_2", "product_name": "Red Hat Enterprise Linux 7.2 Advanced Update Support", "release_date": "2021-08-31T00:00:00Z"}, {"advisory": "RHSA-2020:5183", "cpe": "cpe:/o:redhat:rhel_aus:7.3", "package": "microcode_ctl-2:2.1-16.37.el7_3", "product_name": "Red Hat Enterprise Linux 7.3 Advanced Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3322", "cpe": "cpe:/o:redhat:rhel_aus:7.3", "package": "microcode_ctl-2:2.1-16.42.el7_3", "product_name": "Red Hat Enterprise Linux 7.3 Advanced Update Support", "release_date": "2021-08-31T00:00:00Z"}, {"advisory": "RHSA-2020:5183", "cpe": "cpe:/o:redhat:rhel_tus:7.3", "package": "microcode_ctl-2:2.1-16.37.el7_3", "product_name": "Red Hat Enterprise Linux 7.3 Telco Extended Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2020:5183", "cpe": "cpe:/o:redhat:rhel_e4s:7.3", "package": "microcode_ctl-2:2.1-16.37.el7_3", "product_name": "Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2020:5182", "cpe": "cpe:/o:redhat:rhel_aus:7.4", "package": "microcode_ctl-2:2.1-22.36.el7_4", "product_name": "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3255", "cpe": "cpe:/o:redhat:rhel_aus:7.4", "package": "microcode_ctl-2:2.1-22.41.el7_4", "product_name": "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date": "2021-08-24T00:00:00Z"}, {"advisory": "RHSA-2020:5182", "cpe": "cpe:/o:redhat:rhel_tus:7.4", "package": "microcode_ctl-2:2.1-22.36.el7_4", "product_name": "Red Hat Enterprise Linux 7.4 Telco Extended Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3255", "cpe": "cpe:/o:redhat:rhel_tus:7.4", "package": "microcode_ctl-2:2.1-22.41.el7_4", "product_name": "Red Hat Enterprise Linux 7.4 Telco Extended Update Support", "release_date": "2021-08-24T00:00:00Z"}, {"advisory": "RHSA-2020:5182", "cpe": "cpe:/o:redhat:rhel_e4s:7.4", "package": "microcode_ctl-2:2.1-22.36.el7_4", "product_name": "Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3255", "cpe": "cpe:/o:redhat:rhel_e4s:7.4", "package": "microcode_ctl-2:2.1-22.41.el7_4", "product_name": "Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions", "release_date": "2021-08-24T00:00:00Z"}, {"advisory": "RHSA-2021:3317", "cpe": "cpe:/o:redhat:rhel_aus:7.6", "package": "microcode_ctl-2:2.1-47.23.el7_6", "product_name": "Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118)", "release_date": "2021-08-31T00:00:00Z"}, {"advisory": "RHSA-2020:5181", "cpe": "cpe:/o:redhat:rhel_eus:7.6", "package": "microcode_ctl-2:2.1-47.18.el7_6", "product_name": "Red Hat Enterprise Linux 7.6 Extended Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3317", "cpe": "cpe:/o:redhat:rhel_tus:7.6", "package": "microcode_ctl-2:2.1-47.23.el7_6", "product_name": "Red Hat Enterprise Linux 7.6 Telco Extended Update Support", "release_date": "2021-08-31T00:00:00Z"}, {"advisory": "RHSA-2021:3317", "cpe": "cpe:/o:redhat:rhel_e4s:7.6", "package": "microcode_ctl-2:2.1-47.23.el7_6", "product_name": "Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions", "release_date": "2021-08-31T00:00:00Z"}, {"advisory": "RHSA-2020:5190", "cpe": "cpe:/o:redhat:rhel_eus:7.7", "package": "microcode_ctl-2:2.1-53.13.el7_7", "product_name": "Red Hat Enterprise Linux 7.7 Extended Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3029", "cpe": "cpe:/o:redhat:rhel_eus:7.7", "package": "microcode_ctl-2:2.1-53.18.el7_7", "product_name": "Red Hat Enterprise Linux 7.7 Extended Update Support", "release_date": "2021-08-10T00:00:00Z"}, {"advisory": "RHSA-2020:5085", "cpe": "cpe:/o:redhat:enterprise_linux:8", "package": "microcode_ctl-4:20200609-2.20201027.1.el8_3", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2020-11-11T00:00:00Z"}, {"advisory": "RHSA-2021:3027", "cpe": "cpe:/o:redhat:enterprise_linux:8", "package": "microcode_ctl-4:20210216-1.20210608.1.el8_4", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2021-08-09T00:00:00Z"}, {"advisory": "RHSA-2020:5186", "cpe": "cpe:/o:redhat:rhel_e4s:8.0", "package": "microcode_ctl-4:20180807a-2.20201112.1.el8_0", "product_name": "Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2020:5369", "cpe": "cpe:/o:redhat:rhel_eus:8.1", "package": "microcode_ctl-4:20190618-1.20201112.1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Extended Update Support", "release_date": "2020-12-08T00:00:00Z"}, {"advisory": "RHSA-2021:3176", "cpe": "cpe:/o:redhat:rhel_eus:8.1", "package": "microcode_ctl-4:20190618-1.20210608.1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Extended Update Support", "release_date": "2021-08-17T00:00:00Z"}, {"advisory": "RHSA-2020:5185", "cpe": "cpe:/o:redhat:rhel_eus:8.2", "package": "microcode_ctl-4:20191115-4.20201112.1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Extended Update Support", "release_date": "2020-11-23T00:00:00Z"}, {"advisory": "RHSA-2021:3364", "cpe": "cpe:/o:redhat:rhel_eus:8.2", "package": "microcode_ctl-4:20191115-4.20210608.1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Extended Update Support", "release_date": "2021-08-31T00:00:00Z"}], "bugzilla": {"description": "hw: Fast forward store predictor", "id": "1890356", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890356"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "status": "verified"}, "cwe": "CWE-212", "details": ["Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.", "A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU."], "name": "CVE-2020-8698", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Out of support scope", "package_name": "microcode_ctl", "product_name": "Red Hat Enterprise Linux 5"}], "public_date": "2020-11-10T13:55:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2020-8698\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-8698\nhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html"], "threat_severity": "Moderate"}

{}