Описание
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
A flaw was found in the Linux kernel. The Intel BIOS Shared SW Architecture (BSSA) Design for Test (DFT) feature may allow escalation of privilege in the customer build time configuration. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Отчет
This issue is not in Red Hat supported software. Please contact your system manufacturer for more information and/or potential BIOS firmware update that addresses this issue.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
Уязвимость конфигурации системы BIOS Shared SW Architecture Design for Test (BSSA DFT) микропрограммного обеспечения процессоров Intel Xeon Scalable Processors, Intel Xeon Processors D, Intel Xeon Processors E5 v4, Intel Xeon Processors E5 v3 и Intel Xeon Processors W, позволяющая нарушителю повысить свои привилегии
EPSS
7.5 High
CVSS3