7.6

CVE-2018-3652

Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3 Family, Intel Xeon Scalable processors, and Intel Xeon Processor D Family allows a limited physical presence attacker to potentially access platform secrets via debug interfaces.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IntelXeon E3 Version1505m_v6
IntelXeon E3 Version1515m_v5
IntelXeon E3 Version1535m_v5
IntelXeon E3 Version1535m_v6
IntelXeon E3 Version1545m_v5
IntelXeon E3 Version1558l_v5
IntelXeon E3 Version1565l_v5
IntelXeon E3 Version1575m_v5
IntelXeon E3 Version1578l_v5
IntelXeon E3 Version1585_v5
IntelXeon E3 Version1585l_v5
IntelXeon E3 1220 V5 Version-
IntelXeon E3 1220 V6 Version-
IntelXeon E3 1225 V5 Version-
IntelXeon E3 1225 V6 Version-
IntelXeon E3 1230 V5 Version-
IntelXeon E3 1230 V6 Version-
IntelXeon E3 1235l V5 Version-
IntelXeon E3 1240 V5 Version-
IntelXeon E3 1240 V6 Version-
IntelXeon E3 1240l V5 Version-
IntelXeon E3 1245 V5 Version-
IntelXeon E3 1245 V6 Version-
IntelXeon E3 1260l V5 Version-
IntelXeon E3 1268l V5 Version-
IntelXeon E3 1270 V5 Version-
IntelXeon E3 1270 V6 Version-
IntelXeon E3 1275 V5 Version-
IntelXeon E3 1275 V6 Version-
IntelXeon E3 1280 V5 Version-
IntelXeon E3 1280 V6 Version-
IntelXeon E3 1285 V6 Version-
IntelXeon E3 1501l V6 Version-
IntelXeon E3 1501m V6 Version-
IntelXeon E3 1505l V5 Version-
IntelXeon E3 1505l V6 Version-
IntelXeon E3 1505m V5 Version-
IntelXeon Bronze 3104 Version-
IntelXeon Bronze 3106 Version-
IntelXeon Gold Version5115
IntelXeon Gold Version5118
IntelXeon Gold Version5119t
IntelXeon Gold Version5120
IntelXeon Gold Version5120t
IntelXeon Gold Version5122
IntelXeon Gold Version6126
IntelXeon Gold Version6126f
IntelXeon Gold Version6126t
IntelXeon Gold Version6128
IntelXeon Gold Version6130
IntelXeon Gold Version6130f
IntelXeon Gold Version6130t
IntelXeon Gold Version6132
IntelXeon Gold Version6134
IntelXeon Gold Version6134m
IntelXeon Gold Version6136
IntelXeon Gold Version6138
IntelXeon Gold Version6138f
IntelXeon Gold Version6138p
IntelXeon Gold Version6138t
IntelXeon Gold Version6140
IntelXeon Gold Version6140m
IntelXeon Gold Version6142
IntelXeon Gold Version6142f
IntelXeon Gold Version6142m
IntelXeon Gold Version6144
IntelXeon Gold Version6146
IntelXeon Gold Version6148
IntelXeon Gold Version6148f
IntelXeon Gold Version6150
IntelXeon Gold Version6152
IntelXeon Gold Version6154
IntelXeon Platinum Version8153
IntelXeon Platinum Version8156
IntelXeon Platinum Version8158
IntelXeon Platinum Version8160
IntelXeon Platinum Version8160f
IntelXeon Platinum Version8160m
IntelXeon Platinum Version8160t
IntelXeon Platinum Version8164
IntelXeon Platinum Version8168
IntelXeon Platinum Version8170
IntelXeon Platinum Version8170m
IntelXeon Platinum Version8176
IntelXeon Platinum Version8176f
IntelXeon Platinum Version8176m
IntelXeon Platinum Version8180
IntelXeon Platinum Version8180m
IntelXeon Silver Version4108
IntelXeon Silver Version4109t
IntelXeon Silver Version4110
IntelXeon Silver Version4112
IntelXeon Silver Version4114
IntelXeon Silver Version4114t
IntelXeon Silver Version4116
IntelXeon Silver Version4116t
IntelXeon Versiond-1513n
IntelXeon Versiond-1518
IntelXeon Versiond-1520
IntelXeon Versiond-1521
IntelXeon Versiond-1523n
IntelXeon Versiond-1527
IntelXeon Versiond-1528
IntelXeon Versiond-1529
IntelXeon Versiond-1531
IntelXeon Versiond-1533n
IntelXeon Versiond-1537
IntelXeon Versiond-1539
IntelXeon Versiond-1540
IntelXeon Versiond-1541
IntelXeon Versiond-1543n
IntelXeon Versiond-1548
IntelXeon Versiond-1553n
IntelXeon Versiond-1557
IntelXeon Versiond-1559
IntelXeon Versiond-1567
IntelXeon Versiond-1571
IntelXeon Versiond-1577
IntelXeon Versiond-2123it
IntelXeon Versiond-2141i
IntelXeon Versiond-2142it
IntelXeon Versiond-2143it
IntelXeon Versiond-2145nt
IntelXeon Versiond-2146nt
IntelXeon Versiond-2161i
IntelXeon Versiond-2163it
IntelXeon Versiond-2166nt
IntelXeon Versiond-2173it
IntelXeon Versiond-2177nt
IntelXeon Versiond-2183it
IntelXeon Versiond-2187nt
IntelAtom C Versionc2308
IntelAtom C Versionc2316
IntelAtom C Versionc2338
IntelAtom C Versionc2350
IntelAtom C Versionc2358
IntelAtom C Versionc2508
IntelAtom C Versionc2516
IntelAtom C Versionc2518
IntelAtom C Versionc2530
IntelAtom C Versionc2538
IntelAtom C Versionc2550
IntelAtom C Versionc2558
IntelAtom C Versionc2718
IntelAtom C Versionc2730
IntelAtom C Versionc2738
IntelAtom C Versionc2750
IntelAtom C Versionc2758
IntelAtom C Versionc3308
IntelAtom C Versionc3336
IntelAtom C Versionc3338
IntelAtom C Versionc3508
IntelAtom C Versionc3538
IntelAtom C Versionc3558
IntelAtom C Versionc3708
IntelAtom C Versionc3750
IntelAtom C Versionc3758
IntelAtom C Versionc3808
IntelAtom C Versionc3830
IntelAtom C Versionc3850
IntelAtom C Versionc3858
IntelAtom C Versionc3950
IntelAtom C Versionc3955
IntelAtom C Versionc3958
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.314
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.6 0.9 6
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.