vulnerability

Red Hat: CVE-2024-21823: kernel: dmaengine/idxd: hardware erratum allows potential security problem with direct access by untrusted application (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:M/Au:S/C:N/I:P/A:C)	May 16, 2024	Aug 12, 2024	Sep 1, 2025

Severity

CVSS

(AV:L/AC:M/Au:S/C:N/I:P/A:C)

Published

May 16, 2024

Added

Aug 12, 2024

Modified

Sep 1, 2025

Description

Hardware logic with insecure de-synchronization in Intel(R) DSA and Intel(R) IAA for some Intel(R) 4th or 5th generation Xeon(R) processors may allow an authorized user to potentially enable escalation of privilege local access

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-1264
CWE-400
NVD-CVE-2024-21823
REDHAT-RHSA-2024:5101
REDHAT-RHSA-2024:5102
REDHAT-RHSA-2024:5363
REDHAT-RHSA-2024:5364
REDHAT-RHSA-2024:5365
REDHAT-RHSA-2024:6206

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today