CVE-2018-12207

Name of the Vulnerable Software and Affected Versions Intel(R) Processors (affected versions not specified)

Description The issue is related to improper invalidation for page table updates by a virtual guest operating system, which may allow an authenticated user to potentially enable denial of service of the host system via local access. This could lead to a denial-of-service condition, where a malicious actor with local access to execute code in a virtual machine may be able to trigger a purple diagnostic screen or immediate reboot of the Hypervisor hosting the virtual machine. The vulnerability is also associated with the Intel Transactional Synchronization Extensions (TSX) technology and a lack of protection for service data, which could allow an attacker to disclose protected information through a side-channel attack. The error affects a wide range of Intel processors and is related to the translation lookaside buffer (TLB), a specialized CPU cache used to accelerate virtual memory address translation to physical memory addresses.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.