CVE ID
CVE-2018-3615
DESCRIPTION
Systems with microprocessors utilizing speculative execution and Intel® software guard extensions (Intel® SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
7.9 High CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
RESOLUTION
Resolution:
Fixed with kernel-2.6.32-754.3.5.el6.x86_64.rpm and microcode_ctl-1.17-33.3.el6_10.x86_64.rpm in Unitrends security update (>=08/16/2018)