CVE-2018-3615
MEDIUM6.4EPSS 1.6%Published: 8/14/2018Modified: 4/28/2026
Also known as:DEBIAN-CVE-2018-3615
Description
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
Affected packages (1)
- Debian/intel-microcodefrom 0, < 3.20180703.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.4 | CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N |