MediumPublic exploit

Meltdown (Rogue Data Cache Load)

IdentifiersCVE-2017-5754CWE-1037Also known asmeltdown

CVE-2017-5754, commonly known as Meltdown and also referred to as Variant 3 or Rogue Data Cache Load (RDCL), is a speculative-execution side-channel vulnerability in affected microprocessors, most notably Intel CPUs and some ARM designs such as Cortex-A75. The flaw arises because, on affected processors, permission checks for privileged memory access are not enforced early enough to prevent transient execution from loading kernel-resident data into the CPU cache. Although the illegal access is eventually blocked architecturally, the transiently accessed data influences cache state and can then be recovered through cache timing side-channel techniques. The provided content describes this as allowing a user-mode process to speculatively access virtual memory as if it were running in kernel mode, enabling unauthorized disclosure of kernel memory to a local attacker.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation allows unauthorized disclosure of privileged memory, especially kernel memory, to a local unprivileged attacker. Depending on environment and implementation details, exposed data can include passwords, cryptographic keys, account information, and other sensitive data resident in kernel space or accessible through privileged mappings. In virtualized or multi-tenant environments, the issue also increases risk to isolation boundaries, and some advisories note scenarios in which guest contexts could infer host or other guest memory under certain conditions. The primary impact is information disclosure rather than direct code execution.

Mitigation

If you can’t patch tonight, do this now.

Where full remediation is not yet possible, reduce exposure by preventing execution of untrusted local code, especially on shared systems, VDI, and multi-tenant or cloud workloads. In browsers and similar environments, apply vendor mitigations that reduce timer precision or otherwise hinder cache side-channel exploitation, though these are more relevant to related speculative-execution attacks than to classic Meltdown. In virtualized environments, migrate from weaker isolation modes where advised, and ensure host-level protections are enabled. For Linux and similar platforms, enabling KPTI/PTI is the key mitigation for Variant 3.

Remediation

Patch, then assume compromise.

Apply vendor-provided operating system updates that implement kernel/user page-table separation mitigations, such as Kernel Page Table Isolation (KPTI) or Page Table Isolation (PTI). Also apply relevant BIOS, firmware, and processor microcode updates where recommended by the platform vendor, even though Meltdown mitigation itself is primarily OS-level. Update hypervisors and guest operating systems in virtualized environments, and follow vendor-specific guidance from OS, cloud, and hardware providers. Reboot systems after kernel or firmware updates to ensure mitigations are active.

PUBLIC EXPLOITS

Exploits

1 valid exploit after Mallory filtered fakes, detection scripts, and README-only repos (4 hidden).

VALID 1 / 5 TOTALView more in app

MeltdownMaturityPoCVerified exploit

This repository is a proof-of-concept (PoC) exploit for the Meltdown vulnerability (CVE-2017-5754) affecting certain CPUs and the Linux kernel. The structure consists of two main directories: 'cache' (demonstrating cache timing) and 'meltdown' (the actual exploit). The 'meltdown' directory contains the main exploit code, which uses speculative execution and cache side-channel techniques to read arbitrary memory from protected kernel space. The exploit is run from the command line, requiring the user to specify a memory address and size. The code is written in C and is intended for research and demonstration purposes, not for weaponization. No network or remote endpoints are involved; the attack vector is purely local, requiring code execution privileges on the target system.

zzadoDisclosed Jan 18, 2018cmakefilelocal

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

Amazon Web ServicesEcs Optimized Amioperating_system

Amazon Web ServicesLinux Amioperating_system

Amazon Web ServicesWindows Server Amioperating_system

ArmCortex-Ahardware

IntelAtom Chardware

IntelAtom Ehardware

IntelAtom X3hardware

IntelAtom Zhardware

IntelCeleron Jhardware

IntelCeleron Nhardware

IntelCore I3hardware

IntelCore I5hardware

IntelCore I7hardware

IntelCore Mhardware

IntelCore M3hardware

IntelCore M5hardware

IntelCore M7hardware

IntelCpuhardware

IntelPentium Jhardware

IntelPentium Nhardware

IntelXeonhardware

IntelXeon Bronze 3104hardware

IntelXeon Bronze 3106hardware

IntelXeon E-1105chardware

IntelXeon E3hardware

IntelXeon E3 1105c V2hardware

IntelXeon E3 1220hardware

IntelXeon E3 1220 V2hardware

IntelXeon E3 1220 V5hardware

IntelXeon E3 12201hardware

IntelXeon E3 12201 V2hardware

IntelXeon E3 1220l V3hardware

IntelXeon E3 1225hardware

IntelXeon E3 1225 V2hardware

IntelXeon E3 1230hardware

IntelXeon E3 1230 V6hardware

IntelXeon E3 1230l V3hardware

IntelXeon E3 1235hardware

IntelXeon E3 1235l V5application

IntelXeon E3 1240 V2hardware

IntelXeon E3 1240 V3hardware

IntelXeon E3 1241 V3hardware

IntelXeon E3 1245hardware

IntelXeon E3 1245 V2hardware

IntelXeon E3 1246 V3hardware

IntelXeon E3 1260lhardware

IntelXeon E3 1265l V2hardware

IntelXeon E3 1268l V3hardware

IntelXeon E3 1270 V2hardware

IntelXeon E3 1270 V3hardware

IntelXeon E3 1271 V3hardware

IntelXeon E3 1275hardware

IntelXeon E3 1275 V2hardware

IntelXeon E3 1275 V3hardware

IntelXeon E3 1276 V3hardware

IntelXeon E3 1278l V4hardware

IntelXeon E3 1280 V5hardware

IntelXeon E3 1286 V3hardware

IntelXeon E3 1286l V3hardware

IntelXeon E3 1501m V6hardware

IntelXeon E3-1125chardware

IntelXeon E3-1125c V2hardware

IntelXeon E3-1220 V3hardware

IntelXeon E3-1220 V6hardware

IntelXeon E3-1225 V3hardware

IntelXeon E3-1225 V5hardware

IntelXeon E3-1225 V6hardware

IntelXeon E3-1226 V3hardware

IntelXeon E3-1230 V2hardware

IntelXeon E3-1230 V3hardware

IntelXeon E3-1230 V5application

IntelXeon E3-1231 V3hardware

IntelXeon E3-1240hardware

IntelXeon E3-1240 V5hardware

IntelXeon E3-1240 V6hardware

IntelXeon E3-1240l V3hardware

IntelXeon E3-1240l V5hardware

IntelXeon E3-1245 V3hardware

IntelXeon E3-1245 V5application

IntelXeon E3-1245 V6application

IntelXeon E3-1258l V4hardware

IntelXeon E3-1260l V5hardware

IntelXeon E3-1265l V3hardware

IntelXeon E3-1265l V4hardware

IntelXeon E3-1268l V5application

IntelXeon E3-1270hardware

IntelXeon E3-1270 V5hardware

IntelXeon E3-1270 V6application

IntelXeon E3-1275 V5hardware

IntelXeon E3-1275 V6hardware

IntelXeon E3-1275l V3hardware

IntelXeon E3-1280hardware

IntelXeon E3-1280 V2hardware

IntelXeon E3-1280 V3hardware

IntelXeon E3-1280 V6hardware

IntelXeon E3-1281 V3hardware

IntelXeon E3-1285 V3hardware

IntelXeon E3-1285 V4hardware

IntelXeon E3-1285 V6hardware

IntelXeon E3-1285l V3hardware

IntelXeon E3-1285l V4hardware

IntelXeon E3-1290hardware

IntelXeon E3-1290 V2hardware

IntelXeon E3-1501l V6hardware

IntelXeon E3-1505l V5hardware

IntelXeon E3-1505l V6application

IntelXeon E3-1505m V5application

IntelXeon E5hardware

IntelXeon E5 1428lhardware

IntelXeon E5 1428l V2hardware

IntelXeon E5 1620hardware

IntelXeon E5 1620 V3hardware

IntelXeon E5 1620 V4hardware

IntelXeon E5 1650hardware

IntelXeon E5 1650 V4hardware

IntelXeon E5 1660hardware

IntelXeon E5 1660 V2hardware

IntelXeon E5 1660 V4hardware

IntelXeon E5 2403hardware

IntelXeon E5 2407hardware

IntelXeon E5 2407 V2hardware

IntelXeon E5 2408l V3hardware

IntelXeon E5 2418l V2hardware

IntelXeon E5 2420hardware

IntelXeon E5 2428lhardware

IntelXeon E5 2430 V2hardware

IntelXeon E5 2438l V3hardware

IntelXeon E5 2450lhardware

IntelXeon E5 2470hardware

IntelXeon E5 2470 V2hardware

IntelXeon E5 2609hardware

IntelXeon E5 2609 V2hardware

IntelXeon E5 2618l V3hardware

IntelXeon E5 2618l V4hardware

IntelXeon E5 2620 V3hardware

IntelXeon E5 2623 V3hardware

IntelXeon E5 2623 V4hardware

IntelXeon E5 2628l V2hardware

IntelXeon E5 2628l V3hardware

IntelXeon E5 2628l V4hardware

IntelXeon E5 2630 V2hardware

IntelXeon E5 2630 V4hardware

IntelXeon E5 2630lhardware

IntelXeon E5 2637hardware

IntelXeon E5 2637 V3hardware

IntelXeon E5 2637 V4hardware

IntelXeon E5 2640hardware

IntelXeon E5 2640 V2hardware

IntelXeon E5 2643hardware

IntelXeon E5 2643 V4hardware

IntelXeon E5 2648lhardware

IntelXeon E5 2648l V2hardware

IntelXeon E5 2648l V3hardware

IntelXeon E5 2650hardware

IntelXeon E5 2650 V2hardware

IntelXeon E5 2650 V3hardware

IntelXeon E5 2650lhardware

IntelXeon E5-1428l V3hardware

IntelXeon E5-1620 V2hardware

IntelXeon E5-1630 V3hardware

IntelXeon E5-1630 V4hardware

IntelXeon E5-1650 V2hardware

IntelXeon E5-1650 V3hardware

IntelXeon E5-1660 V3hardware

IntelXeon E5-1680 V3hardware

IntelXeon E5-1680 V4hardware

IntelXeon E5-2403 V2hardware

IntelXeon E5-2418lhardware

IntelXeon E5-2418l V3hardware

IntelXeon E5-2420 V2hardware

IntelXeon E5-2428l V2hardware

IntelXeon E5-2428l V3hardware

IntelXeon E5-2430hardware

IntelXeon E5-2430lhardware

IntelXeon E5-2430l V2hardware

IntelXeon E5-2440hardware

IntelXeon E5-2440 V2hardware

IntelXeon E5-2448lhardware

IntelXeon E5-2448l V2hardware

IntelXeon E5-2450hardware

IntelXeon E5-2450 V2hardware

IntelXeon E5-2450l V2hardware

IntelXeon E5-2603hardware

IntelXeon E5-2603 V2hardware

IntelXeon E5-2603 V3hardware

IntelXeon E5-2603 V4hardware

IntelXeon E5-2608l V3hardware

IntelXeon E5-2608l V4hardware

IntelXeon E5-2609 V3hardware

IntelXeon E5-2609 V4hardware

IntelXeon E5-2618l V2hardware

IntelXeon E5-2620hardware

IntelXeon E5-2620 V2hardware

IntelXeon E5-2620 V4hardware

IntelXeon E5-2630hardware

IntelXeon E5-2630 V3hardware

IntelXeon E5-2630l V2hardware

IntelXeon E5-2630l V3hardware

IntelXeon E5-2630l V4hardware

IntelXeon E5-2637 V2hardware

IntelXeon E5-2640 V3hardware

IntelXeon E5-2640 V4hardware

IntelXeon E5-2643 V2hardware

IntelXeon E5-2643 V3hardware

IntelXeon E5-2648l V4hardware

IntelXeon E5-2650 V4hardware

IntelXeon E5-2650l V2hardware

IntelXeon E5-2650l V3hardware

IntelXeon E7hardware

IntelXeon Goldhardware

IntelXeon Phihardware

IntelXeon Platinumhardware

IntelXeon Silverhardware

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

42 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

42 SOURCESView more in app

codebyNews

Jun 3, 2026

Side-channel атаки: power analysis и timing для пентестера

A speculative execution side-channel vulnerability affecting multiple CPU architectures, allowing unauthorized data disclosure across privilege boundaries.

support googleNews

Jan 1, 2026

Product Status: CPU Speculative Execution Attack Methods - Google Help

A CPU speculative execution vulnerability for which Google references KPTI-based mitigations, including Android and Chrome OS patching.

microsoft supportNews

Jan 1, 2026

KB4073119: Windows client guidance for IT Pros to protect against silicon-based microarchitectural and speculative execution side-channel vulnerabilities - Microsoft Support

The Meltdown speculative execution vulnerability referenced in mitigation guidance.

vulncheck blogNews

Feb 24, 2025

Exposing CVEs from Black Bastas' Chats

A critical Intel CPU vulnerability (Meltdown) with weaponized and PoC exploits, high likelihood of exploitation.

+27 more in the timeline

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity1

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES

MITRE CVE

cve.org · CVE-2017-5754

NVD

nvd.nist.gov/vuln/detail/CVE-2017-5754

MITRE CWE · CWE-1037

cwe.mitre.org

Patch

portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002

Third Party Advisory

nvidia.custhelp.com/app/answers/detail/a_id/4609

Third Party Advisory

kb.cert.org/vuls/id/584653

Third Party Advisory

securitytracker.com/id/1040071

Third Party Advisory

xenbits.xen.org/xsa/advisory-254.html

Third Party Advisory

access.redhat.com/security/vulnerabilities/speculativeexecution

Third Party Advisory

aws.amazon.com/de/security/security-bulletins/AWS-2018-013

Third Party Advisory

blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack

Third Party Advisory

googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html

+57 more references

view more in app