CVE-2018-3615
First published: Tue Aug 14 2018(Updated: )
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Core i3 | =6006u | |
| Intel Core i3 | =6098p | |
| Intel Core i3 | =6100 | |
| Intel Core i3 | =6100e | |
| Intel Core i3 | =6100h | |
| Intel Core i3 | =6100t | |
| Intel Core i3 | =6100te | |
| Intel Core i3 | =6100u | |
| Intel Core i3 | =6102e | |
| Intel Core i3 | =6157u | |
| Intel Core i3 | =6167u | |
| Intel Core i3 | =6300 | |
| Intel Core i3 | =6300t | |
| Intel Core i3 | =6320 | |
| Intel Core i5 | =650 | |
| Intel Core i5 | =655k | |
| Intel Core i5 | =660 | |
| Intel Core i5 | =661 | |
| Intel Core i5 | =670 | |
| Intel Core i5 | =680 | |
| Intel Core i5 | =6200u | |
| Intel Core i5 | =6260u | |
| Intel Core i5 | =6267u | |
| Intel Core i5 | =6287u | |
| Intel Core i5 | =6300hq | |
| Intel Core i5 | =6300u | |
| Intel Core i5 | =6350hq | |
| Intel Core i5 | =6360u | |
| Intel Core i5 | =6400 | |
| Intel Core i5 | =6400t | |
| Intel Core i5 | =6402p | |
| Intel Core i5 | =6440eq | |
| Intel Core i5 | =6440hq | |
| Intel Core i5 | =6442eq | |
| Intel Core i5 | =6500 | |
| Intel Core i5 | =6500t | |
| Intel Core i5 | =6500te | |
| Intel Core i5 | =6585r | |
| Intel Core i5 | =6600 | |
| Intel Core i5 | =6600k | |
| Intel Core i5 | =6600t | |
| Intel Core i5 | =6685r | |
| Intel CPU Cores | =610e | |
| Intel CPU Cores | =620le | |
| Intel CPU Cores | =620lm | |
| Intel CPU Cores | =620m | |
| Intel CPU Cores | =620ue | |
| Intel CPU Cores | =620um | |
| Intel CPU Cores | =640lm | |
| Intel CPU Cores | =640m | |
| Intel CPU Cores | =640um | |
| Intel CPU Cores | =660lm | |
| Intel CPU Cores | =660ue | |
| Intel CPU Cores | =660um | |
| Intel CPU Cores | =680um | |
| Intel Core i5 | =750 | |
| Intel Core i5 | =750s | |
| Intel Core i5 | =760 | |
| Intel CPU Cores | =7y75 | |
| Intel CPU Cores | =720qm | |
| Intel CPU Cores | =740qm | |
| Intel CPU Cores | =7500u | |
| Intel CPU Cores | =7560u | |
| Intel CPU Cores | =7567u | |
| Intel CPU Cores | =7600u | |
| Intel CPU Cores | =7660u | |
| Intel CPU Cores | =7700 | |
| Intel CPU Cores | =7700hq | |
| Intel CPU Cores | =7700k | |
| Intel CPU Cores | =7700t | |
| Intel CPU Cores | =7820eq | |
| Intel CPU Cores | =7820hk | |
| Intel CPU Cores | =7820hq | |
| Intel CPU Cores | =7920hq | |
| Intel Core i3 | =8100 | |
| Intel Core i3 | =8350k | |
| Intel Core i5 | =8250u | |
| Intel Core i5 | =8350u | |
| Intel Core i5 | =8400 | |
| Intel Core i5 | =8600k | |
| Intel CPU Cores | =820qm | |
| Intel CPU Cores | =840qm | |
| Intel CPU Cores | =860 | |
| Intel CPU Cores | =860s | |
| Intel CPU Cores | =870 | |
| Intel CPU Cores | =870s | |
| Intel CPU Cores | =875k | |
| Intel CPU Cores | =880 | |
| Intel CPU Cores | =8550u | |
| Intel CPU Cores | =8650u | |
| Intel CPU Cores | =8700 | |
| Intel CPU Cores | =8700k | |
| Intel Xeon E3 | =1515m_v5 | |
| Intel Xeon E3 | =1535m_v5 | |
| Intel Xeon E3 | =1545m_v5 | |
| Intel Xeon E3 | =1558l_v5 | |
| Intel Xeon E3 | =1565l_v5 | |
| Intel Xeon E3 | =1575m_v5 | |
| Intel Xeon E3 | =1578l_v5 | |
| Intel Xeon E3 | =1585_v5 | |
| Intel Xeon E3 | =1585l_v5 | |
| Intel Xeon E3-1220 V5 | ||
| Intel Xeon E3-1225 V5 | ||
| Intel Xeon E3-1230 V5 | ||
| Intel Xeon E3-1235L V5 | ||
| Intel Xeon E3-1240 V5 | ||
| Intel Xeon E3-1240 V5 | ||
| Intel Xeon E3-1245 v5 | ||
| Intel Xeon E3-1260L v5 | ||
| Intel Xeon E3-1268L v5 | ||
| Intel Xeon E3-1270 v5 | ||
| Intel Xeon E3-1275 v5 | ||
| Intel Xeon E3-1280 V5 | ||
| Intel Xeon E3-1505L v5 | ||
| Intel Xeon E3-1505m V5 | ||
| Intel Xeon E3 | =1505m_v6 | |
| Intel Xeon E3 | =1535m_v6 | |
| Intel Xeon E3-1220 v6 | ||
| Intel Xeon E3-1225 V6 | ||
| Intel Xeon E3-1230 V6 | ||
| Intel Xeon E3-1240 v6 | ||
| Intel Xeon E3-1245 | ||
| Intel Xeon E3-1270 V6 | ||
| Intel Xeon E3-1275 V6 | ||
| Intel Xeon E3-1280 V6 | ||
| Intel Xeon E3-1285 V6 | ||
| Intel Xeon E3-1501L v6 | ||
| Intel Xeon E3-1501M V6 | ||
| Intel Xeon E3-1505L V6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://support.lenovo.com/us/en/solutions/LEN-24163
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en
- http://www.securityfocus.com/bid/105080
- http://www.securitytracker.com/id/1041451
- https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf
- https://foreshadowattack.eu/
- https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0008
- https://security.netapp.com/advisory/ntap-20180815-0001/
- https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault
- https://support.f5.com/csp/article/K35558453
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html
- https://www.kb.cert.org/vuls/id/982149
- https://www.synology.com/support/security/Synology_SA_18_45
Frequently Asked Questions
What is the severity of CVE-2018-3615?
CVE-2018-3615 has been assigned a high severity rating due to the potential for unauthorized information disclosure.
How do I fix CVE-2018-3615?
To mitigate CVE-2018-3615, ensure that your system is updated with the latest microcode patches from Intel.
Who is affected by CVE-2018-3615?
CVE-2018-3615 affects various Intel Core and Xeon processors that utilize speculative execution and Intel SGX.
What is the impact of CVE-2018-3615?
The impact of CVE-2018-3615 includes the possible unauthorized disclosure of sensitive data from the L1 data cache.
Can CVE-2018-3615 be exploited remotely?
CVE-2018-3615 requires local user access for exploitation, meaning it cannot be exploited remotely.
- agent/type
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel core i3
- version/intel core i3/6006u
- version/intel core i3/6098p
- version/intel core i3/6100
- version/intel core i3/6100e
- version/intel core i3/6100h
- version/intel core i3/6100t
- version/intel core i3/6100te
- version/intel core i3/6100u
- version/intel core i3/6102e
- version/intel core i3/6157u
- version/intel core i3/6167u
- version/intel core i3/6300
- version/intel core i3/6300t
- version/intel core i3/6320
- canonical/intel core i5
- version/intel core i5/650
- version/intel core i5/655k
- version/intel core i5/660
- version/intel core i5/661
- version/intel core i5/670
- version/intel core i5/680
- version/intel core i5/6200u
- version/intel core i5/6260u
- version/intel core i5/6267u
- version/intel core i5/6287u
- version/intel core i5/6300hq
- version/intel core i5/6300u
- version/intel core i5/6350hq
- version/intel core i5/6360u
- version/intel core i5/6400
- version/intel core i5/6400t
- version/intel core i5/6402p
- version/intel core i5/6440eq
- version/intel core i5/6440hq
- version/intel core i5/6442eq
- version/intel core i5/6500
- version/intel core i5/6500t
- version/intel core i5/6500te
- version/intel core i5/6585r
- version/intel core i5/6600
- version/intel core i5/6600k
- version/intel core i5/6600t
- version/intel core i5/6685r
- canonical/intel cpu cores
- version/intel cpu cores/610e
- version/intel cpu cores/620le
- version/intel cpu cores/620lm
- version/intel cpu cores/620m
- version/intel cpu cores/620ue
- version/intel cpu cores/620um
- version/intel cpu cores/640lm
- version/intel cpu cores/640m
- version/intel cpu cores/640um
- version/intel cpu cores/660lm
- version/intel cpu cores/660ue
- version/intel cpu cores/660um
- version/intel cpu cores/680um
- version/intel core i5/750
- version/intel core i5/750s
- version/intel core i5/760
- version/intel cpu cores/7y75
- version/intel cpu cores/720qm
- version/intel cpu cores/740qm
- version/intel cpu cores/7500u
- version/intel cpu cores/7560u
- version/intel cpu cores/7567u
- version/intel cpu cores/7600u
- version/intel cpu cores/7660u
- version/intel cpu cores/7700
- version/intel cpu cores/7700hq
- version/intel cpu cores/7700k
- version/intel cpu cores/7700t
- version/intel cpu cores/7820eq
- version/intel cpu cores/7820hk
- version/intel cpu cores/7820hq
- version/intel cpu cores/7920hq
- version/intel core i3/8100
- version/intel core i3/8350k
- version/intel core i5/8250u
- version/intel core i5/8350u
- version/intel core i5/8400
- version/intel core i5/8600k
- version/intel cpu cores/820qm
- version/intel cpu cores/840qm
- version/intel cpu cores/860
- version/intel cpu cores/860s
- version/intel cpu cores/870
- version/intel cpu cores/870s
- version/intel cpu cores/875k
- version/intel cpu cores/880
- version/intel cpu cores/8550u
- version/intel cpu cores/8650u
- version/intel cpu cores/8700
- version/intel cpu cores/8700k
- canonical/intel xeon e3
- version/intel xeon e3/1515m_v5
- version/intel xeon e3/1535m_v5
- version/intel xeon e3/1545m_v5
- version/intel xeon e3/1558l_v5
- version/intel xeon e3/1565l_v5
- version/intel xeon e3/1575m_v5
- version/intel xeon e3/1578l_v5
- version/intel xeon e3/1585_v5
- version/intel xeon e3/1585l_v5
- canonical/intel xeon e3-1220 v5
- canonical/intel xeon e3-1225 v5
- canonical/intel xeon e3-1230 v5
- canonical/intel xeon e3-1235l v5
- canonical/intel xeon e3-1240 v5
- canonical/intel xeon e3-1245 v5
- canonical/intel xeon e3-1260l v5
- canonical/intel xeon e3-1268l v5
- canonical/intel xeon e3-1270 v5
- canonical/intel xeon e3-1275 v5
- canonical/intel xeon e3-1280 v5
- canonical/intel xeon e3-1505l v5
- canonical/intel xeon e3-1505m v5
- version/intel xeon e3/1505m_v6
- version/intel xeon e3/1535m_v6
- canonical/intel xeon e3-1220 v6
- canonical/intel xeon e3-1225 v6
- canonical/intel xeon e3-1230 v6
- canonical/intel xeon e3-1240 v6
- canonical/intel xeon e3-1245
- canonical/intel xeon e3-1270 v6
- canonical/intel xeon e3-1275 v6
- canonical/intel xeon e3-1280 v6
- canonical/intel xeon e3-1285 v6
- canonical/intel xeon e3-1501l v6
- canonical/intel xeon e3-1501m v6
- canonical/intel xeon e3-1505l v6