CVE-2024-36293

Опубликовано: 12 фев. 2025

Источник: debian

EPSS Низкий

Описание

Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
intel-microcode	fixed	3.20250211.1		package
intel-microcode	fixed	3.20250211.1~deb12u1	bookworm	package

Примечания

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01213.html
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250211

EPSS

Процентиль: 13%

0.00042

Низкий

Связанные уязвимости

CVE-2024-36293

CVSS3: 6.5

ubuntu

12 месяцев назад

Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

CVE-2024-36293

CVSS3: 6.5

redhat

12 месяцев назад

Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

CVE-2024-36293

CVSS3: 6.5

nvd

12 месяцев назад

Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

GHSA-35p6-x466-363j

CVSS3: 6.5

github

12 месяцев назад

Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

BDU:2025-02345

CVSS3: 6.5

fstec

12 месяцев назад

Уязвимость функции EDECCSSA технологии Software Guard eXtensions (SGX) микропрограммного обеспечения процессоров Intel, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 13%

0.00042

Низкий