CVE-2020-4788

CVSS v3.1 4.7 (Medium)

CVSS v2.0 1.9 (Low)

EPSS 0.04 % (10^th)

Affected Products 7

Advisories 33

IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: IBM Corporation
Published Date: 2020-11-20 04:15:11
(3 years ago)
Updated Date: 2023-11-07 03:23:17
(10 months ago)

Affected Products

Fedoraproject

Fedora

Ibm

Oracle

Configuration #1

AND

		CPE23
OR
	Ibm Vios 3.1.0	cpe:2.3:a:ibm:vios:3.1.0
OR
	Running on/with
	Ibm Vios 3.1.1	cpe:2.3:a:ibm:vios:3.1.1
OR
	Running on/with
	Ibm Vios 3.1.2	cpe:2.3:a:ibm:vios:3.1.2
OR
	Running on/with
	Ibm Aix 7.1.0	cpe:2.3:o:ibm:aix:7.1.0
OR
	Running on/with
	Ibm Aix 7.1.5	cpe:2.3:o:ibm:aix:7.1.5
OR
	Running on/with
	Ibm Aix 7.2.0	cpe:2.3:o:ibm:aix:7.2.0
OR
	Running on/with
	Ibm Aix 7.2.3	cpe:2.3:o:ibm:aix:7.2.3
OR
	Running on/with
	Ibm Aix 7.2.4	cpe:2.3:o:ibm:aix:7.2.4
OR
	Running on/with
	Ibm Aix 7.2.5	cpe:2.3:o:ibm:aix:7.2.5
OR
	Running on/with
	Ibm Power9	cpe:2.3:o:ibm:power9:-

Configuration #2

		CPE23	From	Up To
	Fedoraproject Fedora 32	cpe:2.3:o:fedoraproject:fedora:32
	Fedoraproject Fedora 33	cpe:2.3:o:fedoraproject:fedora:33

Configuration #3

		CPE23	From	Up To
	Oracle Communications Cloud Native Core Binding Support Function 22.1.3	cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3
	Oracle Communications Cloud Native Core Network Exposure Function 22.1.1	cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1
	Oracle Communications Cloud Native Core Policy 22.2.0	cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0