DEBIAN-CVE-2018-3620

DEBIAN-CVE-2018-3620 PUBLISHED CVSS 5.599999904632568 MEDIUM

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.

Risk Scores

CVSS v3.0

5.599999904632568

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
Debian:12	xen	0, 0, 0
Debian:13	xen	0, 0, 0
Debian:14	intel-microcode	1.20130222.4, 1.20130222.5, 1.20130222.6
Debian:13	linux	0, 0, 0
Debian:11	linux	0, 0, 0
Debian:14	linux	0, 0, 0
Debian:14	xen	0, 0, 0
Debian:11	xen	0, 0, 0
Debian:13	intel-microcode	3.20140913.1~bpo70+2, 0, 0.20080131-1
Debian:12	linux	0, 0, 0
Debian:12	intel-microcode	*, 0, 0.20080131-1
Debian:11	intel-microcode	0.20090330-1, 0.20090927-1, 0.20100826-1

Timeline

Aug 14, 2018 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2018-3620 advisory

Open in Interactive Console →