CVE-2018-0498 - CERT CVE

  1. CVE-2018-0498

ID CVE-2018-0498
Sažetak ARM mbed TLS before 2.12.0, before 2.7.5, and before 2.1.14 allows local users to achieve partial plaintext recovery (for a CBC based ciphersuite) via a cache-based side-channel attack.
Reference
CVSS
Base: 1.9
Impact: 2.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL NONE NONE
CVSS vektor AV:L/AC:M/Au:N/C:P/I:N/A:N
Zadnje važnije ažuriranje 10-02-2020 - 16:15
Objavljeno 28-07-2018 - 17:29