CVE-2017-5754
published 2018-01-04CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker…
medium5.6CVSS 3.0
AVLACHPRLUINSCCHINAN
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
Affected
916 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | macos_high_sierra_10.13.2_security_update_2017-002_sierra_and_security_update_20 | — | — |
| apple | macos_high_sierra_10.13.3_security_update_2018-001_sierra_and_security_update_20 | — | — |
| apple | tvos | — | — |
| apple | watchos | — | — |
| arm | cortex-a | — | — |
| citrix | xenserver | — | — |
| citrix | xenserver | — | — |
| citrix | xenserver | — | — |
| citrix | xenserver | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 4.14.12-1 (bookworm) | linux 4.14.12-1 (bookworm) |
| debian | nvidia-graphics-drivers | < linux 4.14.12-1 (bookworm) | linux 4.14.12-1 (bookworm) |
| debian | nvidia-graphics-drivers-legacy-340xx | < linux 4.14.12-1 (bookworm) | linux 4.14.12-1 (bookworm) |
| debian | xen | < xen 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 (bookworm) | xen 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 (bookworm) |
| debian | xen | < xen 4.11.1-1 (bookworm) | xen 4.11.1-1 (bookworm) |
| debian | xen | < linux 4.14.12-1 (bookworm) | linux 4.14.12-1 (bookworm) |
| android | — | — | |
| intel | atom_c | — | — |
| intel | atom_c | — | — |
| intel | atom_c | — | — |
| intel | atom_c | — | — |
| intel | atom_c | — | — |
| intel | atom_c | — | — |
| intel | atom_c | — | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
nvdv3.15.6MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
osv7.8HIGH