CVE-2025-20053

Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access...

PT-2025-32756 · Intel · Intel Sgx Sdk +1

Name of the Vulnerable Software and Affected Versions: Intel Edger8r Tool for some IntelR SGX SDK affected versions not specified Description: Improper input validation in the Intel Edger8r Tool for some IntelR SGX SDK may allow an authenticated user to potentially escalate privileges via local...

PT-2025-32757

Name of the Vulnerable Software and Affected Versions: IntelR XeonR 6 Processors affected versions not specified Description: An improperly implemented security check for standard in the DDRIO configuration may allow a privileged user to potentially enable escalation of privilege via local access...

PT-2025-32697

Name of the Vulnerable Software and Affected Versions: IntelR XeonR Processor firmware with SGX enabled affected versions not specified Description: Improper buffer restrictions in some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially escalate privileges...

PT-2025-32744

Name of the Vulnerable Software and Affected Versions: IntelR XeonR 6 processors affected versions not specified Description: An out-of-bounds write issue exists in the memory subsystem of certain IntelR XeonR 6 processors when utilizing IntelR SGX or IntelR TDX. A privileged user may be able to...

Linux Distros Unpatched Vulnerability : CVE-2022-49785

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add overflow check in sgxvalidateoffsetlength sgxvalidateoffsetlength function...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from an attempt to recycle a poisoned page in x86/sgx, which could result in a machine check...

Supporting Intel(R) SGX on Multi-Package Platforms

Intelr Software Guard Extensions SGX was originally released on client platforms and later extended to single socket server platforms. As developers have become familiar with the capabilities of the technology, the applicability of this capability in the cloud has been tested. Various Cloud Servi...

ROS-20250624-03

A vulnerability in the UEFI firmware of Intel processors is related to insufficient granularity of the access controls. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the Software Guard eXtensions SGX implementation of Intel processors is...

Astra Linux – Vulnerability in Intel Microcode

Incorrect default permissions in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privileges through local access...

OESA-2025-1589 microcode_ctl security update

This is a tool to transform and deploy microcode update for x86 CPUs. Security Fixes: Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local...

OESA-2025-1588 microcode_ctl security update

This is a tool to transform and deploy microcode update for x86 CPUs. Security Fixes: Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local...

The vulnerabilities of Software Guard eXtensions (SGX) and Trust Domain Extensions (TDX) in microsoftware for Intel Xeon 6 processor with E-cores allow attackers to enhance their privileges.

The vulnerability of Software Guard eXtensions SGX and Trust Domain Extensions TDX in microsoftware for Intel Xeon 6 processor with E-cores is related to improper restrictions on software interfaces by hardware functions. Exploiting this vulnerability can allow attackers to enhance their privileg...

SUSE CVE-2024-48869

Improper restriction of software interfaces to hardware features for some IntelR XeonR 6 processor with E-cores when using IntelR Trust Domain Extensions IntelR TDX or IntelR Software Guard Extensions IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local...

CVE-2024-48869

Improper restriction of software interfaces to hardware features for some IntelR XeonR 6 processor with E-cores when using IntelR Trust Domain Extensions IntelR TDX or IntelR Software Guard Extensions IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local...

CVE-2024-48869

CVE-2024-48869 affects Intel Xeon 6 processors with E-cores when using SGX/TDX. Root cause: improper restriction of software interfaces to hardware features, enabling a privileged local user to escalate privileges. Affected components include SGX/TDX-enabled microcode interfaces; impact is local ...

CVE-2024-48869

Improper restriction of software interfaces to hardware features for some IntelR XeonR 6 processor with E-cores when using IntelR Trust Domain Extensions IntelR TDX or IntelR Software Guard Extensions IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local...

DEBIAN-CVE-2022-49785

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add overflow check in sgxvalidateoffsetlength sgxvalidateoffsetlength function verifies "offset" and "length" arguments provided by userspace, but was missing an overflow check on their addition. Add it...

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 Security updates for INTEL-SA-01166 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html CVE-2024-31068: Improper Finite State Machines FSMs i...

The vulnerability of the EDECCSSA function in the Software Guard eXtensions (SGX) technology of Intel microprocessor software allows a hacker to induce a service failure.

The vulnerability of the EDECCSSA function in the Software Guard eXtensions SGX microprogramming software for Intel processors is related to deficiencies in access control. Exploiting this vulnerability could allow a perpetrator to cause service failures...