Atom C
CVE-2018-3640
MEDIUM
Severity by source
AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.
AnalysisAI
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local. Rated medium severity (CVSS 5.6).
Technical ContextAI
This vulnerability is classified under CWE-203. Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a. Affected products include: Intel Atom C, Intel Atom E, Intel Atom Z, Intel Celeron J, Intel Celeron N.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized discl
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addres
Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an atta
Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of
Same weakness CWE-203 – Observable Discrepancy
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today