vulnerability

Oracle Linux: CVE-2024-21823: ELSA-2024-12682: Unbreakable Enterprise kernel security update (IMPORTANT) (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:M/Au:S/C:N/I:P/A:C)	May 14, 2024	Aug 16, 2024	Mar 25, 2026

Severity

CVSS

(AV:L/AC:M/Au:S/C:N/I:P/A:C)

Published

May 14, 2024

Added

Aug 16, 2024

Modified

Mar 25, 2026

Description

Hardware logic with insecure de-synchronization in Intel(R) DSA and Intel(R) IAA for some Intel(R) 4th or 5th generation Xeon(R) processors may allow an authorized user to potentially enable escalation of privilege local access

Solutions

oracle-linux-upgrade-kerneloracle-linux-upgrade-kernel-uek

References

CVE-2024-21823
https://attackerkb.com/topics/CVE-2024-21823
ELSA-ELSA-2024-12682
ELSA-ELSA-2024-5101
ELSA-ELSA-2024-5363
CWE-1264
CWE-400
EUVD-EUVD-2024-19435
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-19435

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report