PT-2019-2191 · Intel+8 · Intel Microcode+8

Published

2019-03-06

Updated

2025-01-14

CVE-2018-12126

CVSS v3.1

5.6

Medium

Vector

AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel microcode (affected versions not specified)

Description The issue is related to a microarchitectural store buffer data sampling vulnerability, which is caused by the incorrect implementation of micro-optimization for enhancing data write performance in the CPU cache memory. This allows an attacker with local access to potentially enable information disclosure via a side channel. The vulnerability may be exploited to obtain data on the targeted system, resulting in some information leakage.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Information Disclosure

Side Channel Attack

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-385CWE-200CWE-203

Related Identifiers

ALT-PU-2019-1831

ALT-PU-2019-1832

ALT-PU-2019-1833

ALT-PU-2019-1834

ALT-PU-2019-1863

ALT-PU-2019-1973

ALT-PU-2019-1990

ALT-PU-2019-1991

ALT-PU-2019-1995

ALT-PU-2019-2061

ALT-PU-2019-2063

ALT-PU-2019-2064

ALT-PU-2019-2077

ALT-PU-2019-2665

ALT-PU-2021-3199

ALT-PU-2023-8026

BDU:2019-01960

CESA-2019_1167

CESA-2019_1168

CESA-2019_1169

CESA-2019_1174

CESA-2019_1175

CESA-2019_1177

CESA-2019_1178

CESA-2019_1180

CESA-2019_1181

CVE-2018-12126

DLA-1787-1

DLA-1789-1

DLA-1789-2

DLA-1799-1

DLA-1799-2

DLA-1989-1

DLA-1990-1

DSA-4444-1

DSA-4447-1

DSA-4447-2

DSA-4469-1

DSA-4564-1

DSA-4602-1

FREEBSD-SA-19_07

MGASA-2019-0171

MGASA-2019-0172

MGASA-2019-0173

MGASA-2019-0174

MGASA-2019-0179

OPENSUSE-SU-2019:1402-1

OPENSUSE-SU-2019:1403-1

OPENSUSE-SU-2019:1404-1

OPENSUSE-SU-2019:1405-1

OPENSUSE-SU-2019:1468-1

OPENSUSE-SU-2019:1505-1

OPENSUSE-SU-2019:1805-1

OPENSUSE-SU-2019:1806-1

OPENSUSE-SU-2019_1402-1

OPENSUSE-SU-2019_1403-1

OPENSUSE-SU-2019_1404-1

OPENSUSE-SU-2019_1405-1

OPENSUSE-SU-2019_1407-1

OPENSUSE-SU-2019_1408-1

OPENSUSE-SU-2019_1419-1

OPENSUSE-SU-2019_1420-1

OPENSUSE-SU-2019_1468-1

OPENSUSE-SU-2019_1505-1

OPENSUSE-SU-2019_1805-1

OPENSUSE-SU-2019_1806-1

OPENSUSE-SU-2024:11008-1

OPENSUSE-SU-2024:11287-1

OPENSUSE-SU-2024:11478-1

OPENSUSE-SU-2024:11520-1

RHSA-2019:1155

RHSA-2019:1167

RHSA-2019:1168

RHSA-2019:1169

RHSA-2019:1170

RHSA-2019:1171

RHSA-2019:1172

RHSA-2019:1174

RHSA-2019:1175

RHSA-2019:1176

RHSA-2019:1177

RHSA-2019:1178

RHSA-2019:1179

RHSA-2019:1180

RHSA-2019:1181

RHSA-2019:1182

RHSA-2019:1183

RHSA-2019:1184

RHSA-2019:1185

RHSA-2019:1186

RHSA-2019:1187

RHSA-2019:1188

RHSA-2019:1189

RHSA-2019:1190

RHSA-2019:1193

RHSA-2019:1194

RHSA-2019:1195

RHSA-2019:1196

RHSA-2019:1197

RHSA-2019:1198

RHSA-2019:1199

RHSA-2019:1200

RHSA-2019:1201

RHSA-2019:1202

RHSA-2019:1203

RHSA-2019:1204

RHSA-2019:1205

RHSA-2019:1206

RHSA-2019:1207

RHSA-2019:1208

RHSA-2019:1209

RHSA-2019:1455

RHSA-2019:2553

RHSA-2019_1167

RHSA-2019_1168

RHSA-2019_1169

RHSA-2019_1174

RHSA-2019_1175

RHSA-2019_1176

RHSA-2019_1177

RHSA-2019_1178

RHSA-2019_1180

RHSA-2019_1181

SUSE-RU-2019:2715-1

SUSE-RU-2019:2767-1

SUSE-SU-2019:1235-1

SUSE-SU-2019:1236-1

SUSE-SU-2019:1238-1

SUSE-SU-2019:1239-1

SUSE-SU-2019:1240-1

SUSE-SU-2019:1241-1

SUSE-SU-2019:1242-1

SUSE-SU-2019:1243-1

SUSE-SU-2019:1244-1

SUSE-SU-2019:1245-1

SUSE-SU-2019:1248-1

SUSE-SU-2019:1268-1

SUSE-SU-2019:1269-1

SUSE-SU-2019:1272-1

SUSE-SU-2019:1287-1

SUSE-SU-2019:1289-1

SUSE-SU-2019:1296-1

SUSE-SU-2019:1313-1

SUSE-SU-2019:1347-1

SUSE-SU-2019:1348-1

SUSE-SU-2019:1349-1

SUSE-SU-2019:1356-1

SUSE-SU-2019:1371-1

SUSE-SU-2019:14048-1

SUSE-SU-2019:14051-1

SUSE-SU-2019:14052-1

SUSE-SU-2019:14053-1

SUSE-SU-2019:14063-1

SUSE-SU-2019:14133-1

SUSE-SU-2019:1423-1

SUSE-SU-2019:1438-1

SUSE-SU-2019:1452-1

SUSE-SU-2019:1490-1

SUSE-SU-2019:1547-1

SUSE-SU-2019:1550-1

SUSE-SU-2019:1909-1

SUSE-SU-2019:1910-1

SUSE-SU-2019:1954-1

SUSE-SU-2019:2430-1

SUSE-SU-2019:2753-1

SUSE-SU-2019:2769-1

SUSE-SU-2019_1235-1

SUSE-SU-2019_1236-1

SUSE-SU-2019_1238-1

SUSE-SU-2019_1239-1

SUSE-SU-2019_1240-1

SUSE-SU-2019_1241-1

SUSE-SU-2019_1242-1

SUSE-SU-2019_1243-1

SUSE-SU-2019_1244-1

SUSE-SU-2019_1248-1

SUSE-SU-2019_1268-1

SUSE-SU-2019_1269-1

SUSE-SU-2019_1272-1

SUSE-SU-2019_1296-1

SUSE-SU-2019_1313-1

SUSE-SU-2019_1347-1

SUSE-SU-2019_1348-1

SUSE-SU-2019_1349-1

SUSE-SU-2019_1356-1

SUSE-SU-2019_1371-1

SUSE-SU-2019_14048-1

SUSE-SU-2019_14051-1

SUSE-SU-2019_14052-1

SUSE-SU-2019_14063-1

SUSE-SU-2019_14133-1

SUSE-SU-2019_1423-1

SUSE-SU-2019_1438-1

SUSE-SU-2019_1452-1

SUSE-SU-2019_1490-1

SUSE-SU-2019_1547-1

SUSE-SU-2019_1909-1

SUSE-SU-2019_1910-1

SUSE-SU-2019_1954-1

SUSE-SU-2019_2753-1

SUSE-SU-2019_2769-1

SUSE-SU-2020:1255-1

SUSE-SU-2020:1275-1

USN-3977-1

USN-3977-2

USN-3977-3

USN-3978-1

USN-3979-1

USN-3980-1

USN-3980-2

USN-3981-1

USN-3981-2

USN-3982-1

USN-3982-2

USN-3983-1

USN-3983-2

USN-3984-1

USN-3985-1

USN-3985-2

Affected Products

Alt Linux

Centos

Freebsd

Huawei Vrp

Intel Microcode

Red Hat

Suse

Ubuntu

Vmware Vcenter

PT-2019-2191 · Intel+8 · Intel Microcode+8

CVE-2018-12126

Weakness Enumeration

Related Identifiers

Affected Products

References · 1573