VDB
ALPINE-CVE-2017-5715
ALPINE-CVE-2017-5715
PUBLISHED
CVSS 5.599999904632568 MEDIUM
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
Risk Scores
CVSS 3.1
5.599999904632568
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.5 | xen | 4.1.1-r0, 0, 4.0.1-r1 |
| Alpine:v3.6 | xen | 4.7.1-r3, 4.7.1-r4, 4.7.1-r5 |
Exploit Intelligence
- Spectre (CVE-2017-5753) (CVE-2017-5715). Not By Me. Collected from Book. (github-poc-repo)
- 2018年1月2日 (CVE-2017-5753 和 CVE-2017-5715) "幽灵" Spectre 漏洞利用 (github-poc-repo)
- Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715) (github-poc-repo)
- Spectre exploit (github-poc-repo)
- Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715) (github-poc-repo)
- The demo of the speculative execution attack Spectre (CVE-2017-5753, CVE-2017-5715). (github-poc-repo)
- This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/407311... (github-poc-repo)
- a list of BIOS/Firmware fixes adressing CVE-2017-5715, CVE-2017-5753, CVE-2017-5754 (github-poc-repo)
- Assesses a system for the "speculative execution" vulnerabilities described in CVE-2017-5715, CVE-2017-5753, CVE-2017-5754 (github-poc-repo)
- GalloLuigi/Analisi-CVE-2017-5715 (github-poc-repo)
…and 6 more exploits
Timeline
- Jan 4, 2018 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 15, 2026 CVE Updated