ID |
CVE-2019-11091
|
Summary |
Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf |
References |
|
Vulnerable Configurations |
-
cpe:2.3:o:intel:microarchitectural_data_sampling_uncacheable_memory_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:microarchitectural_data_sampling_uncacheable_memory_firmware:-:*:*:*:*:*:*:*
-
cpe:2.3:h:intel:microarchitectural_data_sampling_uncacheable_memory:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:microarchitectural_data_sampling_uncacheable_memory:-:*:*:*:*:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
|
CVSS |
Base: | 4.7 (as of 24-08-2020 - 17:37) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
LOCAL |
MEDIUM |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
COMPLETE |
NONE |
NONE |
|
cvss-vector
via4
|
AV:L/AC:M/Au:N/C:C/I:N/A:N
|
redhat
via4
|
|
refmap
via4
|
bugtraq | - 20190624 [SECURITY] [DSA 4447-2] intel-microcode security update
- 20190624 [SECURITY] [DSA 4469-1] libvirt security update
- 20191112 [SECURITY] [DSA 4564-1] linux security update
- 20200114 [SECURITY] [DSA 4602-1] xen security update
| confirm | | debian | DSA-4602 | fedora | FEDORA-2019-1f5832fc0e | freebsd | FreeBSD-SA-19:07 | gentoo | GLSA-202003-56 | mlist | [debian-lts-announce] 20190620 [SECURITY] [DLA 1789-2] intel-microcode security update | suse | - openSUSE-SU-2019:1505
- openSUSE-SU-2019:1805
- openSUSE-SU-2019:1806
| ubuntu | USN-3977-3 |
|
Last major update |
24-08-2020 - 17:37 |
Published |
30-05-2019 - 16:29 |
Last modified |
24-08-2020 - 17:37 |