Tech Community Live: Endpoint Manager edition
Jul 21 2022, 08:00 AM - 12:00 PM (PDT)

Speculative Execution Configuration Baseline updated for Microarchitectural Data Sampling CVEs

Published Jun 05 2019 05:55 PM 8,167 Views
Microsoft

We have updated the Speculative Execution Side-Channel Vulnerabilities Configuration Baseline. The updated baseline now includes support for verifying the protections for CVEs 2018-12126, 2018-12130, 2018-12127, 2019-11091 (Microarchitectural Data Sampling) in addition to the previously supported CVE-2017-5715, CVE-2017-5754 CVE-2018-3639 and CVE-2018-3620.

Download the updated baseline


This Compliance Settings configuration baseline is used to confirm whether a system has enabled the mitigations needed to protect against the speculative-execution side-channel vulnerabilities as described in the Microsoft Security Advisories ADV180002, ADV180012, ADV180018 and ADV190013. It is based on the functionality in the PowerShell module Get_SpeculationControlSettings. It requires at least PowerShell 3.0.

 

Read more about mitigating speculative execution side-channel vulnerabilities for Configuration Mana....

1 Comment
Co-Authors
Version history
Last update:
‎Feb 25 2021 01:47 PM
Updated by: