vulnerability
Oracle Linux: CVE-2023-43490: ELSA-2024-9401: microcode_ctl security update (MODERATE)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:H/Au:M/C:C/I:N/A:N) | 2024-02-14 | 2024-11-21 | 2024-11-25 |
Severity
4
CVSS
(AV:L/AC:H/Au:M/C:C/I:N/A:N)
Published
2024-02-14
Added
2024-11-21
Modified
2024-11-25
Description
Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access.
A vulnerability was found in some Intel Xeon D Processors with Intel SGX. This issue may allow a local attacker to achieve sensitive information disclosure, impacting the data confidentiality of the targeted system.
A vulnerability was found in some Intel Xeon D Processors with Intel SGX. This issue may allow a local attacker to achieve sensitive information disclosure, impacting the data confidentiality of the targeted system.
Solution
oracle-linux-upgrade-microcode-ctl
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.