CVE-2018-5407

Name of the Vulnerable Software and Affected Versions Intel processors of Skylake and Kaby Lake architectures (affected versions not specified)

Description The issue is related to Simultaneous Multi-threading (SMT) in processors, which can be exploited by local users via a side-channel timing attack on 'port contention'. This vulnerability may allow an attacker to reveal protected information. The PortSmash side-channel attack can be used to leak encrypted data from the CPU's internal processes by running a malicious process next to legitimate processes using the architecture's parallel thread running capabilities.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.