Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2024-25744
HistoryFeb 12, 2024 - 5:15 a.m.

CVE-2024-25744

2024-02-1205:15:07
Debian Security Bug Tracker
security-tracker.debian.org
18
linux kernel
int80
syscall
vulnerability
vmm
untrusted
mem_encrypt_amd

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

9.0%

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

9.0%