vulnerability

Amazon Linux AMI 2: CVE-2021-0146: Security patch for microcode_ctl (ALAS-2022-1762)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	2021-11-17	2022-07-04	2022-09-30

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

2021-11-17

Added

2022-07-04

Modified

2022-09-30

Description

Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Solution(s)

amazon-linux-ami-2-upgrade-microcode_ctlamazon-linux-ami-2-upgrade-microcode_ctl-debuginfo

References

AMAZON-AL2/ALAS-2022-1762
CVE-2021-0146
https://attackerkb.com/topics/CVE-2021-0146

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today