关键漏洞信息 Advisory ID: NTAP-20181126-0001 CVE: CVE-2018-5407 Vulnerability: Simultaneous Multithreading (SMT) Side-Channel Information Disclosure, also known as PortSmash. Status: Final Last Updated: 04/11/2019 Summary Processors implementing SMT are vulnerable to a side-channel information disclosure, allowing attackers to extract sensitive information through port contention on SMT architectures. Impact Exploitation could result in unauthorized disclosure of sensitive information. Vulnerability Scoring Details CVE: CVE-2018-5407 CVSS Score and Vector: (Details not fully visible) Exploitation and Public Disclosures NetApp acknowledges public disclosures regarding this vulnerability. References NetApp will continue to update this advisory as necessary. This document is the official source for current and accurate information on affected full support products and versions. All content is provided for informational purposes based on NetApp's knowledge.