vulnerability

Amazon Linux AMI: CVE-2022-33196: Security patch for microcode_ctl (ALAS-2023-1715)

Severity
7
CVSS
(AV:L/AC:L/Au:M/C:C/I:C/A:C)
Published
Feb 16, 2023
Added
Apr 6, 2023
Modified
May 21, 2025

Description

Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software Guard Extensions which may allow a privileged user to potentially enable escalation of privilege via local access.

Solution

amazon-linux-upgrade-microcode_ctl
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.