Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huaweiHuawei TechnologiesHUAWEI-SA-20180815-01-CPU
HistoryAug 15, 2018 - 12:00 a.m.

Security Advisory - CPU Side Channel Vulnerability "L1TF"

2018-08-1500:00:00
Huawei Technologies
www.huawei.com
182

CVSS2

5.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:P/A:N

CVSS3

6.4

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

EPSS

0.003

Percentile

71.9%

JSON

Intel and security researchers publicly disclosed three new cpu side-channel vulnerabilities (CVE-2018-3615, CVE-2018-3620 and CVE-2018-3646). Successful exploit of these vulnerabilities could allow a local attacker to read the memory of other processes in specific situations. These vulnerabilities are named by researchers as “Foreshadow” and “Foreshadow-NG”. They are also known as L1 Terminal Fault (L1TF) in the industry.(Vulnerability ID: HWPSIRT-2018-08118,HWPSIRT-2018-08119,HWPSIRT-2018-08120)

Huawei has released software updates to fix these vulnerabilities in the following products.

This advisory will be updated as additional information becomes available, Please stay tuned. This advisory is available at the following link:

<https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en&gt;.

Affected configurations

Vulners
Node
huawei1288h_v5_firmwareRange<V100R005C00SPC117
OR
huawei2288h_v5_firmwareRange<V100R005C00SPC117
OR
huaweiagile_controller-campus_firmwareMatchv100r001c00
OR
huaweiagile_controller-campus_firmwareMatchv100r002c00
OR
huaweiagile_controller-campus_firmwareMatchv100r002c10
OR
huaweibh620_v2_firmwareRange<V100R002C00SPC302
OR
huaweibh621_v2_firmwareRange<V100R002C00SPC301
OR
huaweibh622_v2_firmwareRange<V100R002C00SPC309
OR
huaweibh640_v2_firmwareRange<V100R002C00SPC307
OR
huaweich242_v3_firmwareRange<V100R001C00SPC331
OR
huaweieuleros_firmwareMatchv200r007c00
OR
huaweifusioncube_firmwareMatchv100r002c02
OR
huaweifusioncube_firmwareMatchv100r002c30
OR
huaweifusioncube_firmwareMatchv100r002c70
OR
huaweifusionsphere_openstack_firmwareMatchv100r006c00rc3b036
OR
huaweifusionsphere_openstack_firmwareMatchv100r006c10spc112
OR
huaweigtsoftx3000_firmwareMatchv200r002c20
OR
huaweihuawei_matebook_x_pro_mach-w19_firmwareRange<1.12
OR
huaweihuawei_matebook_x_pro_mach-w29_firmwareRange<1.12
OR
huaweirh1288_v2_firmwareRange<V100R002C00SPC640
OR
huaweirh1288a_v2_firmwareRange<V100R002C00SPC710
OR
huaweirh2265_v2_firmwareRange<V100R002C00SPC510
OR
huaweirh2268_v2_firmwareRange<V100R002C00SPC609
OR
huaweirh2285_v2_firmwareRange<V100R002C00SPC511
OR
huaweirh2285h_v2_firmwareRange<V100R002C00SPC511
OR
huaweirh2288_v2_firmwareRange<V100R002C00SPC610
OR
huaweirh2288a_v2_firmwareRange<V100R002C00SPC710
OR
huaweirh2288e_v2_firmwareRange<V100R002C00SPC302
OR
huaweirh2288h_v2_firmwareRange<V100R002C00SPC620
OR
huaweirh2485_v2_firmwareRange<V100R002C00SPC713
OR
huaweismc2.0_firmwareMatchv500r002c00
OR
huaweiuc_audio_recorder_firmwareMatchv100r001c01
OR
huaweiuc_audio_recorder_firmwareMatchv100r001c02
OR
huaweivp9630_firmwareMatchv600r006c10
OR
huaweivp9660_firmwareMatchv600r006c10
OR
huaweielog_firmwareMatchv200r003c10
OR
huaweielog_firmwareMatchv200r003c20
OR
huaweielog_firmwareMatchv200r007c10
OR
huaweiespace_firmwareMatchv100r001c01
OR
huaweiespace_firmwareMatchv100r001c02
OR
huaweiespace_firmwareMatchv100r001c10
OR
huaweiespace_firmwareMatchv200r003c00
OR
huaweiespace_firmwareMatchv200r002c00
OR
huaweiimanager_neteco_firmwareMatchv600r007c00
OR
huaweiimanager_neteco_firmwareMatchv600r007c10
OR
huaweiimanager_neteco_firmwareMatchv600r007c11
OR
huaweiimanager_neteco_firmwareMatchv600r007c12
OR
huaweiimanager_neteco_firmwareMatchv600r007c20
OR
huaweiimanager_neteco_firmwareMatchv600r007c30
OR
huaweiimanager_neteco_firmwareMatchv600r007c40
OR
huaweiimanager_neteco_firmwareMatchv600r007c50
OR
huaweiimanager_neteco_firmwareMatchv600r007c60
OR
huaweiimanager_neteco_firmwareMatchv600r008c00
OR
huaweiimanager_neteco_firmwareMatchv600r008c10
OR
huaweiimanager_neteco_firmwareMatchv600r008c20
OR
huaweiimanager_neteco_firmwareMatchv600r008c30
OR
huaweiimanager_neteco_6000_firmwareMatchv600r007c40
OR
huaweiimanager_neteco_6000_firmwareMatchv600r007c60
OR
huaweiimanager_neteco_6000_firmwareMatchv600r007c80
OR
huaweiimanager_neteco_6000_firmwareMatchv600r007c90
OR
huaweiimanager_neteco_6000_firmwareMatchv600r008c00
OR
huaweiesightMatchv300r009c00
OR
huaweiimanager_netecoMatchv200r018c10
VendorProductVersionCPE
huawei1288h_v5_firmware*cpe:2.3:o:huawei:1288h_v5_firmware:*:*:*:*:*:*:*:*
huawei2288h_v5_firmware*cpe:2.3:o:huawei:2288h_v5_firmware:*:*:*:*:*:*:*:*
huaweiagile_controller-campus_firmwarev100r001c00cpe:2.3:o:huawei:agile_controller-campus_firmware:v100r001c00:*:*:*:*:*:*:*
huaweiagile_controller-campus_firmwarev100r002c00cpe:2.3:o:huawei:agile_controller-campus_firmware:v100r002c00:*:*:*:*:*:*:*
huaweiagile_controller-campus_firmwarev100r002c10cpe:2.3:o:huawei:agile_controller-campus_firmware:v100r002c10:*:*:*:*:*:*:*
huaweibh620_v2_firmware*cpe:2.3:o:huawei:bh620_v2_firmware:*:*:*:*:*:*:*:*
huaweibh621_v2_firmware*cpe:2.3:o:huawei:bh621_v2_firmware:*:*:*:*:*:*:*:*
huaweibh622_v2_firmware*cpe:2.3:o:huawei:bh622_v2_firmware:*:*:*:*:*:*:*:*
huaweibh640_v2_firmware*cpe:2.3:o:huawei:bh640_v2_firmware:*:*:*:*:*:*:*:*
huaweich242_v3_firmware*cpe:2.3:o:huawei:ch242_v3_firmware:*:*:*:*:*:*:*:*
Rows per page:
1-10 of 631

Related

ibm 9
openvas 34
msrc 2
cert 1
threatpost 2
mageia 4
lenovo 2
cisco 1
thn 1
f5 4
intel 1
nessus 65
amazon 2
redhat 13
osv 5
freebsd 1
fedora 2
redhatcve 3
xen 1
debian 5
ubuntu 9
freebsd_advisory 1
slackware 1
paloalto 1
oraclelinux 3
cloudfoundry 2
cve 3
mscve 1
prion 3
ubuntucve 2
cvelist 2
nvd 2
hp 1
debiancve 3
vmware 3
veracode 2
citrix 1
suse 1
ibm
ibm
Security Bulletin: Multiple Security Vulnerabilities affect IBM® Cloud Private Cloud Foundry (CVE-2018-3646, CVE-2018-3615, CVE-2018-3620)
2018-11-19 15:40:01
Security Bulletin: Multiple Foreshadow Spectre Variant vulnerabilities affect IBM OS Image for Red Hat Linux Systems in IBM PureApplication System (CVE-2018-3615 CVE-2018-3620 CVE-2018-3646)
2019-01-25 12:10:01
Security Bulletin: IBM API Connect is affected by Foreshadow Spectre Variant vulnerability (CVE-2018-3646 CVE-2018-3615 CVE-2018-3620)
2018-10-26 20:30:02
openvas
openvas
Missing Linux Kernel mitigations for 'L1TF - L1 Terminal Fault' hardware vulnerabilities
2020-08-12 00:00:00
Mageia: Security Advisory (MGASA-2018-0347)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2018-0346)
2022-01-28 00:00:00
msrc
msrc
Analysis and mitigation of L1 Terminal Fault (L1TF)
2018-08-13 07:00:00
Analysis and mitigation of L1 Terminal Fault (L1TF)
2018-08-13 07:00:00
cert
cert
Intel processors are vulnerable to a speculative execution side-channel attack called L1 Terminal Fault (L1TF)
2018-08-15 00:00:00
threatpost
threatpost
Intel CPUs Undermined By Fresh Speculative Execution Flaws
2018-08-14 19:24:34
New Ninth-Gen Intel CPUs Shield Against Some Spectre, Meltdown Variants
2018-10-09 19:37:35
mageia
mageia
Updated kernel-tmb packages fix security vulnerabilities
2018-08-19 14:24:54
Updated kernel packages fix security vulnerabilities
2018-08-19 14:24:54
Updated microcode packages fix security vulnerabilities
2018-08-19 14:24:54
lenovo
lenovo
L1 Terminal Fault Side Channel Vulnerabilities - Lenovo Support NL
2018-08-16 14:27:00
L1 Terminal Fault Side Channel Vulnerabilities - US
2018-08-16 14:27:00
cisco
cisco
CPU Side-Channel Information Disclosure Vulnerabilities: August 2018
2018-08-14 17:00:00
thn
thn
Foreshadow Attacks — 3 New Intel CPU Side-Channel Flaws Discovered
2018-08-15 07:40:00
f5
f5
K70675920 : August 2018 Intel security vulnerability announcement
2018-08-15 00:00:00
K35558453 : Intel SGX L1 Terminal Fault vulnerability CVE-2018-3615
2018-08-15 00:00:00
K95275140 : OS Kernel and SMM mode L1 Terminal Fault vulnerability CVE-2018-3620
2018-10-05 00:00:00
intel
intel
Q3 2018 Speculative Execution Side Channel Update
2021-05-11 00:00:00
nessus
nessus
Amazon Linux 2 : kernel (ALAS-2018-1058) (Foreshadow)
2018-08-15 00:00:00
Amazon Linux AMI : kernel (ALAS-2018-1058) (Foreshadow)
2018-08-15 00:00:00
FreeBSD : FreeBSD -- L1 Terminal Fault (L1TF) Kernel Information Disclosure (2310b814-a652-11e8-805b-a4badb2f4699) (Foreshadow)
2018-08-23 00:00:00
amazon
amazon
Critical: kernel
2018-08-10 20:26:00
Critical: kernel
2018-08-10 22:53:00
redhat
redhat
(RHSA-2018:2404) Important: rhev-hypervisor7 security update
2018-08-15 15:14:04
(RHSA-2018:2603) Important: kernel security update
2018-08-29 18:05:21
(RHSA-2018:2388) Important: kernel security and bug fix update
2018-08-14 18:50:39
osv
osv
linux-4.9 - security update
2018-08-28 00:00:00
linux - security update
2018-08-20 00:00:00
xen - security update
2018-08-16 00:00:00
freebsd
freebsd
FreeBSD -- L1 Terminal Fault (L1TF) Kernel Information Disclosure
2018-08-14 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: kernel-headers-4.17.14-3.fc28
2018-08-16 08:08:45
[SECURITY] Fedora 27 Update: kernel-headers-4.17.14-3.fc27
2018-08-16 07:24:56
redhatcve
redhatcve
CVE-2018-3646
2021-01-24 22:39:20
CVE-2018-3620
2021-03-20 21:41:50
CVE-2018-3615
2018-08-15 14:58:21
xen
xen
L1 Terminal Fault speculative side channel
2018-08-14 17:15:00
debian
debian
[SECURITY] [DSA 4279-1] linux security update
2018-08-20 11:44:32
[SECURITY] [DSA 4279-1] linux security update
2018-08-20 11:44:32
[SECURITY] [DSA 4274-1] xen security update
2018-08-16 20:47:43
ubuntu
ubuntu
Linux kernel vulnerabilities
2018-11-15 00:00:00
Linux kernel (HWE) vulnerabilities
2018-08-14 00:00:00
Linux kernel vulnerabilities
2018-08-14 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-18:09.l1tf
2018-08-14 00:00:00
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2018-08-28 23:41:10
paloalto
paloalto
Information about L1 Terminal Fault findings
2018-08-17 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-09-06 00:00:00
Unbreakable Enterprise kernel security update
2018-08-14 00:00:00
Unbreakable Enterprise kernel security update
2018-09-13 00:00:00
cloudfoundry
cloudfoundry
USN-3740-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2018-09-11 00:00:00
USN-3741-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-08-17 00:00:00
cve
cve
CVE-2018-36464
2022-02-25 11:27:40
CVE-2018-3615
2018-08-14 19:29:00
CVE-2018-3620
2018-08-14 19:29:00
mscve
mscve
Microsoft Guidance to mitigate L1TF variant
2018-08-14 07:00:00
prion
prion
Information disclosure
2018-08-14 19:29:00
Information disclosure
2018-08-14 19:29:00
Information disclosure
2018-08-14 19:29:00
ubuntucve
ubuntucve
CVE-2018-3615
2018-08-14 00:00:00
CVE-2018-3620
2018-08-14 00:00:00
cvelist
cvelist
CVE-2018-3615
2018-08-14 19:00:00
CVE-2018-3620
2018-08-14 19:00:00
nvd
nvd
CVE-2018-3615
2018-08-14 19:29:00
CVE-2018-3620
2018-08-14 19:29:00
hp
hp
HPSBHF03590 rev. 2 - L1 Terminal Fault (L1TF)
2018-08-14 00:00:00
debiancve
debiancve
CVE-2018-3615
2018-08-14 19:29:00
CVE-2018-3620
2018-08-14 19:29:00
CVE-2018-3646
2018-08-14 19:29:00
vmware
vmware
Operating System-Specific Mitigations address L1 Terminal Fault - OS vulnerability in VMware Virtual Appliances.
2018-08-14 00:00:00
Operating System-Specific Mitigations address L1 Terminal Fault - OS vulnerability in VMware Virtual Appliances.
2018-08-14 00:00:00
VMware vSphere, Workstation, and Fusion updates enable Hypervisor-Specific Mitigations for L1 Terminal Fault - VMM vulnerability.
2018-08-14 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 09:24:09
Information Disclosure
2019-05-16 03:11:25
citrix
citrix
XenServer Multiple Security Updates
2018-08-14 04:00:00
suse
suse
Security update for xen (important)
2018-08-19 15:09:36

CVSS2

5.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:P/A:N

CVSS3

6.4

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

EPSS

0.003

Percentile

71.9%

JSON
Related for HUAWEI-SA-20180815-01-CPU
ibm9openvas34msrc2cert1threatpost2mageia4lenovo2cisco1thn1f54intel1nessus65amazon2redhat13osv5freebsd1fedora2redhatcve3xen1debian5ubuntu9freebsd_advisory1slackware1paloalto1oraclelinux3cloudfoundry2cve3mscve1prion3ubuntucve2cvelist2nvd2hp1debiancve3vmware3veracode2citrix1suse1