vulnerability
CentOS Linux: CVE-2023-20592: Moderate: linux-firmware security update (CESA-2024:0753)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:N/I:C/A:N) | Nov 14, 2023 | Feb 12, 2024 | Jan 28, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:C/A:N)
Published
Nov 14, 2023
Added
Feb 12, 2024
Modified
Jan 28, 2025
Description
Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.
Solutions
centos-upgrade-iwl100-firmwarecentos-upgrade-iwl1000-firmwarecentos-upgrade-iwl105-firmwarecentos-upgrade-iwl135-firmwarecentos-upgrade-iwl2000-firmwarecentos-upgrade-iwl2030-firmwarecentos-upgrade-iwl3160-firmwarecentos-upgrade-iwl3945-firmwarecentos-upgrade-iwl4965-firmwarecentos-upgrade-iwl5000-firmwarecentos-upgrade-iwl5150-firmwarecentos-upgrade-iwl6000-firmwarecentos-upgrade-iwl6000g2a-firmwarecentos-upgrade-iwl6000g2b-firmwarecentos-upgrade-iwl6050-firmwarecentos-upgrade-iwl7260-firmwarecentos-upgrade-linux-firmware
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.