5.1

CVE-2020-4788

IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmVios Version3.1.0
   IbmPower9 Version-
IbmVios Version3.1.1
   IbmPower9 Version-
IbmVios Version3.1.2
   IbmPower9 Version-
IbmAix Version7.1.0
   IbmPower9 Version-
IbmAix Version7.1.5
   IbmPower9 Version-
IbmAix Version7.2.0
   IbmPower9 Version-
IbmAix Version7.2.3
   IbmPower9 Version-
IbmAix Version7.2.4
   IbmPower9 Version-
IbmAix Version7.2.5
   IbmPower9 Version-
FedoraprojectFedora Version32
FedoraprojectFedora Version33
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.39% 0.307
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.7 1 3.6
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 1.9 3.4 2.9
AV:L/AC:M/Au:N/C:P/I:N/A:N
psirt@us.ibm.com 5.1 1.4 3.6
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://www.oracle.com/security-alerts/cpujul2022.html
Patch
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TITJQPYDWZ4NB2ONJWUXW75KSQIPF35T/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZF4OGZPKTAJJXWHPIFP3LHEWWEMR5LPT/
http://www.openwall.com/lists/oss-security/2020/11/20/3
Patch
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2020/11/23/1
Third Party Advisory
Mailing List
https://exchange.xforce.ibmcloud.com/vulnerabilities/189296
Vendor Advisory
VDB Entry
https://www.ibm.com/support/pages/node/6370729
Patch
Vendor Advisory