admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2018/CVE-2018-121xx/CVE-2018-12126.json
cad-safe-bot b47d02a333 Auto-Update: 2023-11-07T21:02:52.274489+00:00
2023-11-07 21:03:21 +00:00

227 lines
7.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2018-12126",
"sourceIdentifier": "secure@intel.com",
"published": "2019-05-30T16:29:00.870",
"lastModified": "2023-11-07T02:52:02.200",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"
},
{
"lang": "es",
"value": "En Microarchitectural Store Buffer Data Sampling (MSBDS): los b\u00faferes de almacenamiento en algunos microprocesadores que usan ejecuci\u00f3n especulativa pueden permitir que un usuario autenticado active potencialmente la divulgaci\u00f3n de informaci\u00f3n por medio de un canal lateral con acceso local. Puede encontrar una lista de los productos impactados aqu\u00ed: https://www.intel.com/content/dam/www/public/us/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.1,
"impactScore": 4.0
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:N/A:N",
"accessVector": "LOCAL",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.7
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 3.4,
"impactScore": 6.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:intel:microarchitectural_store_buffer_data_sampling_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8118C0B-EBAE-43BF-8F2B-19E16BF6BAA9"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:intel:microarchitectural_store_buffer_data_sampling:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3E47DEBF-9DD8-4D69-BB15-04AB1448C150"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419"
}
]
}
]
}
],
"references": [
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html",
"source": "secure@intel.com"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html",
"source": "secure@intel.com"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html",
"source": "secure@intel.com"
},
{
"url": "http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html",
"source": "secure@intel.com"
},
{
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
"source": "secure@intel.com"
},
{
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en",
"source": "secure@intel.com"
},
{
"url": "https://access.redhat.com/errata/RHSA-2019:1455",
"source": "secure@intel.com"
},
{
"url": "https://access.redhat.com/errata/RHSA-2019:2553",
"source": "secure@intel.com"
},
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf",
"source": "secure@intel.com"
},
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf",
"source": "secure@intel.com"
},
{
"url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10292",
"source": "secure@intel.com"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html",
"source": "secure@intel.com"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/",
"source": "secure@intel.com"
},
{
"url": "https://seclists.org/bugtraq/2019/Jun/28",
"source": "secure@intel.com"
},
{
"url": "https://seclists.org/bugtraq/2019/Jun/36",
"source": "secure@intel.com"
},
{
"url": "https://seclists.org/bugtraq/2019/Nov/15",
"source": "secure@intel.com"
},
{
"url": "https://seclists.org/bugtraq/2019/Nov/16",
"source": "secure@intel.com"
},
{
"url": "https://seclists.org/bugtraq/2020/Jan/21",
"source": "secure@intel.com"
},
{
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc",
"source": "secure@intel.com"
},
{
"url": "https://security.gentoo.org/glsa/202003-56",
"source": "secure@intel.com"
},
{
"url": "https://usn.ubuntu.com/3977-3/",
"source": "secure@intel.com"
},
{
"url": "https://www.debian.org/security/2020/dsa-4602",
"source": "secure@intel.com"
},
{
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc",
"source": "secure@intel.com"
},
{
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html",
"source": "secure@intel.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://www.synology.com/security/advisory/Synology_SA_19_24",
"source": "secure@intel.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink