Andrei Lutas

Name of the Vulnerable Software and Affected Versions: Intel(R) Processors (affected versions not specified) Description: The issue concerns a load value injection in some Intel(R) Processors utilizing speculative execution, which may allow an authenticated user to potentially enable information disclosure via a side channel with local access. This could lead to the disclosure of protected information. The vulnerability exploits the speculative execution mechanism, potentially allowing attackers to bypass existing defenses and access sensitive data from Intel SGX enclaves and other processes. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel Microprocessors (affected versions not specified) vCenter Server (affected versions not specified) ESXi (affected versions not specified) Workstation (affected versions not specified) Fusion (affected versions not specified) **Description** The issue is related to Microarchitectural Fill Buffer Data Sampling (MFBDS), which may allow an authenticated user to potentially enable information disclosure via a side channel with local access. This is due to the speculative execution utilized by some microprocessors. **Recommendations** For Intel Microprocessors, consider applying the microcode updates as guided by Intel to mitigate the risk. For vCenter Server, update to a version that includes Hypervisor-Specific Mitigations for MDS speculative execution vulnerabilities. For ESXi, update to a version that includes Hypervisor-Specific Mitigations for MDS speculative execution vulnerabilities. For Workstation, update to a version that includes Hypervisor-Specific Mitigations for MDS speculative execution vulnerabilities. For Fusion, update to a version that includes Hypervisor-Specific Mitigations for MDS speculative execution vulnerabilities.

**Name of the Vulnerable Software and Affected Versions** Xen versions 4.4.x and earlier **Description** The issue is related to the x86 emulate function in Xen, which does not properly check supervisor mode permissions. This allows local HVM users to cause a denial of service, resulting in a guest crash, or gain guest kernel mode privileges. The exploitation vectors involve specific instructions, including `HLT`, `LGDT`, `LIDT`, or `LMSW`. **Recommendations** For Xen versions 4.4.x and earlier, consider restricting the use of the x86 emulate function until a patch is available. As a temporary workaround, limiting the execution of `HLT`, `LGDT`, `LIDT`, or `LMSW` instructions may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Xen versions 3.3.x through 4.4.x **Description** The issue is related to the x86 emulate function in Xen, which does not properly check supervisor mode permissions for certain instructions. This allows local HVM guest users to cause a denial of service, resulting in a guest crash, via unspecified vectors. **Recommendations** For Xen versions 3.3.x through 4.4.x, consider restricting access to the x86 emulate function or applying configuration changes to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.