Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-31315

Опубликовано: 12 авг. 2024
Источник: ubuntu
Приоритет: medium
CVSS3: 7.5

Описание

Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

РелизСтатусПримечание
devel

not-affected

3.20240820.1
esm-infra-legacy/trusty

ignored

processor not supported during LTS
esm-infra/bionic

released

3.20191021.1+really3.20181128.1~ubuntu0.18.04.1+esm3
esm-infra/focal

not-affected

3.20191218.1ubuntu1.3
esm-infra/xenial

released

3.20191021.1+really3.20180524.1~ubuntu0.16.04.2+esm3
focal

released

3.20191218.1ubuntu1.3
jammy

released

3.20191218.1ubuntu2.3
noble

released

3.20231019.1ubuntu2.1
oracular

released

3.20240116.2+nmu1ubuntu1.1
trusty/esm

ignored

end of ESM support, was ignored [processor not supported during LTS]

Показывать по

Ссылки на источники

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-31315

CVSS3: 7.5
redhat
10 месяцев назад

Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

nvd логотип

CVE-2023-31315

CVSS3: 7.5
nvd
10 месяцев назад

Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

debian логотип

CVE-2023-31315

CVSS3: 7.5
debian
10 месяцев назад

Improper validation in a model specific register (MSR) could allow a m ...

suse-cvrf логотип

SUSE-SU-2024:4255-1

suse-cvrf
7 месяцев назад

Security update for kernel-firmware

suse-cvrf логотип

SUSE-SU-2024:3081-1

suse-cvrf
10 месяцев назад

Security update for kernel-firmware

7.5 High

CVSS3