CVE-2018-12127

Published May 30, 2019

Last updated a year ago

Overview

Description
Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf
Source
secure@intel.com
NVD status
Modified

Risk scores

CVSS 3.0

Type
Primary
Base score
5.6
Impact score
4
Exploitability score
1.1
Vector string
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Severity
MEDIUM

CVSS 2.0

Type
Primary
Base score
4.7
Impact score
6.9
Exploitability score
3.4
Vector string
AV:L/AC:M/Au:N/C:C/I:N/A:N

Weaknesses

nvd@nist.gov
CWE-200

Social media

Hype score
Not currently trending

Configurations

References