Lucene search
Alpine Linux Development TeamALPINE:CVE-2023-38575HistoryMar 14, 2024 - 5:15 p.m.
CVE-2023-38575
2024-03-1417:15:51
Alpine Linux Development Team
security.alpinelinux.org
14
cve-2023-38575
non-transparent sharing
return predictor
information disclosure
local access
unix
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.7
Confidence
High
EPSS
0
Percentile
15.5%
Non-transparent sharing of return predictor targets between contexts in some Intel® Processors may allow an authorized user to potentially enable information disclosure via local access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | intel-ucode | < 20240312-r0 | UNKNOWN |
| Alpine | 3.17-main | noarch | intel-ucode | < 20240813-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | intel-ucode | < 20240813-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | intel-ucode | < 20240312-r0 | UNKNOWN |
| Alpine | 3.20-main | noarch | intel-ucode | < 20240312-r0 | UNKNOWN |
Related
redhatcve
redhatcve
CVE-2023-38575
2024-03-21 14:31:32
ubuntucve
ubuntucve
CVE-2023-38575
2024-03-12 00:00:00
vulnrichment
vulnrichment
CVE-2023-38575
2024-03-14 16:45:45
veracode
veracode
Information Disclosure
2024-03-16 11:06:02
cvelist
cvelist
CVE-2023-38575
2024-03-14 16:45:45
cve
cve
CVE-2023-38575
2024-03-14 17:15:51
osv
osv
CVE-2023-38575
2024-03-14 17:15:51
intel-microcode - security update
2024-05-04 00:00:00
ucode-intel-20240312-1.1 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2023-38575
2024-03-14 17:15:51
debiancve
debiancve
CVE-2023-38575
2024-03-14 17:15:51
amazon
amazon
Medium: microcode_ctl
2024-03-12 12:00:00
nessus
nessus
Amazon Linux 2023 : microcode_ctl (ALAS2023-2024-559)
2024-03-13 00:00:00
Amazon Linux 2 : microcode_ctl (ALAS-2024-2491)
2024-03-12 00:00:00
Debian dla-3808 : intel-microcode - security update
2024-05-04 00:00:00
citrix
citrix
Citrix Hypervisor Security Update for CVE-2023-39368 and CVE-2023-38575
2024-03-12 17:06:58
redos
redos
ROS-20240902-08
2024-09-02 00:00:00
hp
hp
Intel 2024.1 IPU - BIOS March 2024 Security Updates
2024-03-13 00:00:00
freebsd
freebsd
Intel CPUs -- multiple vulnerabilities
2023-03-12 00:00:00
debian
debian
[SECURITY] [DLA 3808-1] intel-microcode security update
2024-05-04 15:21:16
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1139-1)
2024-05-07 00:00:00
openSUSE: Security Advisory for ucode (SUSE-SU-2024:1139-1)
2024-04-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0917-1)
2024-05-07 00:00:00
mageia
mageia
Updated microcode packages fix security vulnerabilities
2024-03-31 06:27:58
cloudfoundry
cloudfoundry
USN-6797-1: Intel Microcode vulnerabilities | Cloud Foundry
2024-07-25 00:00:00
ubuntu
ubuntu
Intel Microcode vulnerabilities
2024-05-29 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: microcode_ctl-2.1-58.1.fc39
2024-08-13 01:35:40
[SECURITY] Fedora 40 Update: microcode_ctl-2.1-61.1.fc40
2024-08-08 02:48:02
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.7
Confidence
High
EPSS
0
Percentile
15.5%
Related for ALPINE:CVE-2023-38575