vulnerability

Red Hat: CVE-2024-43420: microcode_ctl: Exposure of sensitive information (Multiple Advisories)

Name: Red Hat: CVE-2024-43420: microcode_ctl: Exposure of sensitive information (Multiple Advisories)
Creator: Red Hat
Published: 2025-05-13T00:00:00.000Z
Keywords: CVE, CWE-1423, Red Hat, 2024, 43420, microcode_ctl, redhat-upgrade-microcode_ctl, redhat-upgrade-microcode_ctl-debuginfo, Severity 4

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:N/A:N)

Published

May 13, 2025

Added

Jul 4, 2025

Modified

Jun 17, 2026

Description

Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.

Solutions

redhat-upgrade-microcode_ctlredhat-upgrade-microcode_ctl-debuginfo

References

CWE-1423
EUVD-EUVD-2025-14606
NVD-CVE-2024-43420
REDHAT-RHSA-2025:10101
REDHAT-RHSA-2025:10102
REDHAT-RHSA-2025:10108
REDHAT-RHSA-2025:10991
https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-14606

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report