vulnerability

Red Hat: CVE-2023-43490: kernel: Local information disclosure on Intel(R) Xeon(R) D processors with Intel(R) SGX due to incorrect calculation in microcode (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:M/Au:M/C:C/I:N/A:N)	Mar 14, 2024	Nov 13, 2024	Sep 1, 2025

Severity

CVSS

(AV:L/AC:M/Au:M/C:C/I:N/A:N)

Published

Mar 14, 2024

Added

Nov 13, 2024

Modified

Sep 1, 2025

Description

Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access.

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-microcode_ctl

References

CWE-682
NVD-CVE-2023-43490
REDHAT-RHSA-2024:9401

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today