vulnerability

Amazon Linux AMI 2: CVE-2023-23583: Security patch for microcode_ctl (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:S/C:C/I:C/A:C)	Nov 14, 2023	Nov 16, 2023	May 20, 2026

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:C/A:C)

Published

Nov 14, 2023

Added

Nov 16, 2023

Modified

May 20, 2026

Description

Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access.

Solutions

amazon-linux-ami-2-upgrade-microcode_ctlamazon-linux-ami-2-upgrade-microcode_ctl-debuginfo

References

AMAZON-AL2/ALAS-2023-2341
CVE-2023-23583
https://attackerkb.com/topics/CVE-2023-23583
CWE-1281
CWE-276
EUVD-EUVD-2023-27683
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-27683

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report