CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.6 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
intelCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
VendorProductVersion
intelxeon_bronze_3104
-
intelxeon_bronze_3106
-
intelxeon_e-1105c
-
intelxeon_e3_1105c_v2
-
intelxeon_e3_1125c
-
intelxeon_e3_1125c_v2
-
intelxeon_e3_1220
-
intelxeon_e3_1220_v2
-
intelxeon_e3_1220_v3
-
intelxeon_e3_1220_v5
-
intelxeon_e3_1220_v6
-
intelxeon_e3_12201
-
intelxeon_e3_12201_v2
-
intelxeon_e3_1220l_v3
-
intelxeon_e3_1225
-
intelxeon_e3_1225_v2
-
intelxeon_e3_1225_v3
-
intelxeon_e3_1225_v5
-
intelxeon_e3_1225_v6
-
intelxeon_e3_1226_v3
-
intelxeon_e3_1230
-
intelxeon_e3_1230_v2
-
intelxeon_e3_1230_v3
-
intelxeon_e3_1230_v5
-
intelxeon_e3_1230_v6
-
intelxeon_e3_1230l_v3
-
intelxeon_e3_1231_v3
-
intelxeon_e3_1235
-
intelxeon_e3_1235l_v5
-
intelxeon_e3_1240
-
intelxeon_e3_1240_v2
-
intelxeon_e3_1240_v3
-
intelxeon_e3_1240_v5
-
intelxeon_e3_1240_v6
-
intelxeon_e3_1240l_v3
-
intelxeon_e3_1240l_v5
-
intelxeon_e3_1241_v3
-
intelxeon_e3_1245
-
intelxeon_e3_1245_v2
-
intelxeon_e3_1245_v3
-
intelxeon_e3_1245_v5
-
intelxeon_e3_1245_v6
-
intelxeon_e3_1246_v3
-
intelxeon_e3_1258l_v4
-
intelxeon_e3_1260l
-
intelxeon_e3_1260l_v5
-
intelxeon_e3_1265l_v2
-
intelxeon_e3_1265l_v3
-
intelxeon_e3_1265l_v4
-
intelxeon_e3_1268l_v3
-
intelxeon_e3_1268l_v5
-
intelxeon_e3_1270
-
intelxeon_e3_1270_v2
-
intelxeon_e3_1270_v3
-
intelxeon_e3_1270_v5
-
intelxeon_e3_1270_v6
-
intelxeon_e3_1271_v3
-
intelxeon_e3_1275
-
intelxeon_e3_1275_v2
-
intelxeon_e3_1275_v3
-
intelxeon_e3_1275_v5
-
intelxeon_e3_1275_v6
-
intelxeon_e3_1275l_v3
-
intelxeon_e3_1276_v3
-
intelxeon_e3_1278l_v4
-
intelxeon_e3_1280
-
intelxeon_e3_1280_v2
-
intelxeon_e3_1280_v3
-
intelxeon_e3_1280_v5
-
intelxeon_e3_1280_v6
-
intelxeon_e3_1281_v3
-
intelxeon_e3_1285_v3
-
intelxeon_e3_1285_v4
-
intelxeon_e3_1285_v6
-
intelxeon_e3_1285l_v3
-
intelxeon_e3_1285l_v4
-
intelxeon_e3_1286_v3
-
intelxeon_e3_1286l_v3
-
intelxeon_e3_1290
-
intelxeon_e3_1290_v2
-
intelxeon_e3_1501l_v6
-
intelxeon_e3_1501m_v6
-
intelxeon_e3_1505l_v5
-
intelxeon_e3_1505l_v6
-
intelxeon_e3_1505m_v5
-
intelxeon_e5_1428l
-
intelxeon_e5_1428l_v2
-
intelxeon_e5_1428l_v3
-
intelxeon_e5_1620
-
intelxeon_e5_1620_v2
-
intelxeon_e5_1620_v3
-
intelxeon_e5_1620_v4
-
intelxeon_e5_1630_v3
-
intelxeon_e5_1630_v4
-
intelxeon_e5_1650
-
intelxeon_e5_1650_v2
-
intelxeon_e5_1650_v3
-
intelxeon_e5_1650_v4
-
intelxeon_e5_1660
-
intelxeon_e5_1660_v2
-
intelxeon_e5_1660_v3
-
intelxeon_e5_1660_v4
-
intelxeon_e5_1680_v3
-
intelxeon_e5_1680_v4
-
intelxeon_e5_2403
-
intelxeon_e5_2403_v2
-
intelxeon_e5_2407
-
intelxeon_e5_2407_v2
-
intelxeon_e5_2408l_v3
-
intelxeon_e5_2418l
-
intelxeon_e5_2418l_v2
-
intelxeon_e5_2418l_v3
-
intelxeon_e5_2420
-
intelxeon_e5_2420_v2
-
intelxeon_e5_2428l
-
intelxeon_e5_2428l_v2
-
intelxeon_e5_2428l_v3
-
intelxeon_e5_2430
-
intelxeon_e5_2430_v2
-
intelxeon_e5_2430l
-
intelxeon_e5_2430l_v2
-
intelxeon_e5_2438l_v3
-
intelxeon_e5_2440
-
intelxeon_e5_2440_v2
-
intelxeon_e5_2448l
-
intelxeon_e5_2448l_v2
-
intelxeon_e5_2450
-
intelxeon_e5_2450_v2
-
intelxeon_e5_2450l
-
intelxeon_e5_2450l_v2
-
intelxeon_e5_2470
-
intelxeon_e5_2470_v2
-
intelxeon_e5_2603
-
intelxeon_e5_2603_v2
-
intelxeon_e5_2603_v3
-
intelxeon_e5_2603_v4
-
intelxeon_e5_2608l_v3
-
intelxeon_e5_2608l_v4
-
intelxeon_e5_2609
-
intelxeon_e5_2609_v2
-
intelxeon_e5_2609_v3
-
intelxeon_e5_2609_v4
-
intelxeon_e5_2618l_v2
-
intelxeon_e5_2618l_v3
-
intelxeon_e5_2618l_v4
-
intelxeon_e5_2620
-
intelxeon_e5_2620_v2
-
intelxeon_e5_2620_v3
-
intelxeon_e5_2620_v4
-
intelxeon_e5_2623_v3
-
intelxeon_e5_2623_v4
-
intelxeon_e5_2628l_v2
-
intelxeon_e5_2628l_v3
-
intelxeon_e5_2628l_v4
-
intelxeon_e5_2630
-
intelxeon_e5_2630_v2
-
intelxeon_e5_2630_v3
-
intelxeon_e5_2630_v4
-
intelxeon_e5_2630l
-
intelxeon_e5_2630l_v2
-
intelxeon_e5_2630l_v3
-
intelxeon_e5_2630l_v4
-
intelxeon_e5_2637
-
intelxeon_e5_2637_v2
-
intelxeon_e5_2637_v3
-
intelxeon_e5_2637_v4
-
intelxeon_e5_2640
-
intelxeon_e5_2640_v2
-
intelxeon_e5_2640_v3
-
intelxeon_e5_2640_v4
-
intelxeon_e5_2643
-
intelxeon_e5_2643_v2
-
intelxeon_e5_2643_v3
-
intelxeon_e5_2643_v4
-
intelxeon_e5_2648l
-
intelxeon_e5_2648l_v2
-
intelxeon_e5_2648l_v3
-
intelxeon_e5_2648l_v4
-
intelxeon_e5_2650
-
intelxeon_e5_2650_v2
-
intelxeon_e5_2650_v3
-
intelxeon_e5_2650_v4
-
intelxeon_e5_2650l
-
intelxeon_e5_2650l_v2
-
intelxeon_e5_2650l_v3
-
oraclecommunications_eagle_application_processor
16.1.0
oraclecommunications_eagle_application_processor
16.2.0
oraclecommunications_lsms
13.1 ≤
𝑥
≤ 13.3
schneider-electricstruxureware_data_center_expert
7.6.0
netappsolidfire_element_os_management_node
-
redhatenterprise_linux
7.0
redhatenterprise_linux_desktop
6.0
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_eus
7.4
redhatenterprise_linux_server
6.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_server_aus
7.4
redhatenterprise_linux_server_aus
7.6
redhatenterprise_linux_server_eus
7.5
redhatenterprise_linux_server_eus
7.6
redhatenterprise_linux_server_tus
7.4
redhatenterprise_linux_server_tus
7.6
redhatenterprise_linux_workstation
6.0
redhatenterprise_linux_workstation
7.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
sid
6.11.5-1
fixed
trixie
6.11.5-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
cosmic
not-affected
bionic
not-affected
artful
ignored
xenial
not-affected
trusty
dne
intel-microcode
cosmic
not-affected
bionic
Fixed 3.20180312.0~ubuntu18.04.1
released
artful
Fixed 3.20180312.0~ubuntu17.10.1
released
xenial
Fixed 3.20180312.0~ubuntu16.04.1
released
trusty
Fixed 3.20180312.0~ubuntu14.04.1
released
linux
cosmic
not-affected
bionic
not-affected
artful
ignored
xenial
Fixed 4.4.0-112.135
released
trusty
Fixed 3.13.0-157.207
released
linux-aws
cosmic
not-affected
bionic
not-affected
artful
dne
xenial
Fixed 4.4.0-1049.58
released
trusty
Fixed 4.4.0-1011.11
released
linux-azure
cosmic
not-affected
bionic
not-affected
artful
dne
xenial
Fixed 4.15.0-1013.13~16.04.2
released
trusty
not-affected
linux-azure-edge
cosmic
dne
bionic
not-affected
xenial
not-affected
trusty
dne
linux-euclid
cosmic
dne
bionic
dne
artful
dne
xenial
Fixed 4.4.0-9023.24
released
trusty
dne
linux-flo
cosmic
dne
bionic
dne
artful
dne
xenial
ignored
trusty
dne
linux-gcp
cosmic
not-affected
bionic
not-affected
artful
dne
xenial
Fixed 4.15.0-1014.14~16.04.1
released
trusty
dne
linux-gke
cosmic
dne
bionic
dne
artful
dne
xenial
ignored
trusty
dne
linux-goldfish
cosmic
dne
bionic
dne
artful
dne
xenial
ignored
trusty
dne
linux-grouper
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-hwe
cosmic
dne
bionic
not-affected
artful
dne
xenial
Fixed 4.15.0-24.26~16.04.1
released
trusty
dne
linux-hwe-edge
cosmic
dne
bionic
not-affected
artful
dne
xenial
Fixed 4.15.0-24.26~16.04.1
released
trusty
dne
linux-kvm
cosmic
not-affected
bionic
not-affected
artful
dne
xenial
Fixed 4.4.0-1017.22
released
trusty
dne
linux-lts-trusty
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-lts-utopic
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-lts-vivid
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-lts-wily
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-lts-xenial
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
Fixed 4.4.0-111.134~14.04.1
released
linux-maguro
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-mako
cosmic
dne
bionic
dne
artful
dne
xenial
ignored
trusty
dne
linux-manta
cosmic
dne
bionic
dne
artful
dne
xenial
dne
trusty
dne
linux-oem
cosmic
not-affected
bionic
not-affected
artful
dne
xenial
ignored
trusty
dne
linux-raspi2
cosmic
not-affected
bionic
not-affected
artful
ignored
xenial
Fixed 4.4.0-1085.93
released
trusty
dne
linux-snapdragon
cosmic
dne
bionic
not-affected
artful
ignored
xenial
Fixed 4.4.0-1087.92
released
trusty
dne
References
https://access.redhat.com/errata/RHSA-2018:2384
https://access.redhat.com/errata/RHSA-2018:2390
https://access.redhat.com/errata/RHSA-2018:2395
https://access.redhat.com/errata/RHSA-2019:1946
https://access.redhat.com/errata/RHSA-2020:0174
https://cdrdv2.intel.com/v1/dl/getContent/685359
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
https://security.netapp.com/advisory/ntap-20180823-0001/
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
https://access.redhat.com/errata/RHSA-2018:2384
https://access.redhat.com/errata/RHSA-2018:2390
https://access.redhat.com/errata/RHSA-2018:2395
https://access.redhat.com/errata/RHSA-2019:1946
https://access.redhat.com/errata/RHSA-2020:0174
https://cdrdv2.intel.com/v1/dl/getContent/685359
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
https://security.netapp.com/advisory/ntap-20180823-0001/
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html