CVE-2019-0174

Name of the Vulnerable Software and Affected Versions Intel microprocessors (affected versions not specified)

Description The issue is related to a logic condition in specific microprocessors that may allow an authenticated user to potentially enable partial physical address information disclosure via local access. It is also associated with a lack of protection for service data. A side-channel attack, similar to DRAM Rowhammer attacks, can be used to steal sensitive data from device memory without directly accessing it. This type of attack allows attackers to read bits from adjacent rows, and it has been demonstrated against OpenSSH, resulting in the extraction of an RSA-2048 key from memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.