Amazon Linux 2 : microcode_ctl, --advisory ALAS2-2026-3294 (ALAS-2026-3294)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3294 advisory. Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startu...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: microcode_ctl (UTSA-2026-016522)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016522 advisory. Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel AtomR processors may allow a...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: microcode_ctl (UTSA-2026-015290)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-015290 advisory. Insufficient resource pool in the core management mechanism for some IntelR Processors may allow an authenticated user to potentially enable denial of service via...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: microcode_ctl (UTSA-2026-015074)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-015074 advisory. Incorrect behavior order for some IntelR Core Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access...

[SECURITY] Fedora 42 Update: microcode_ctl-2.1-70.1.fc42

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

Fedora: Security Advisory (FEDORA-2026-60e8919a4a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-85ee8cb2a2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MiracleLinux 4 : microcode_ctl-1.17-33.31.AXS4 (AXSA:2020-893:07)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-893:07 advisory. hw: Vector Register Leakage-Active CVE-2020-8696 hw: Fast forward store predictor CVE-2020-8698 Tenable has extracted the preceding description block...

MiracleLinux 7 : microcode_ctl-2.1-29.16.el7 (AXEA:2018-3321:06)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXEA:2018-3321:06 advisory. - Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in...

MiracleLinux 8 : microcode_ctl-20250512-1.el8_10 (AXSA:2025-10507:05)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10507:05 advisory. microcodectl: From CVEorg collector CVE-2024-28956 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

CLSA-2025-1761596531 Update of microcode_ctl

Update version - Drop releasenote.md file...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: microcode_ctl (UTSA-2025-986087)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986087 advisory. Improper input validation in UEFI firmware for some IntelR processors may allow a privileged user to potentially enable escalation of privilege via local access...

Unity Linux 20.1070a Security Update: microcode_ctl (UTSA-2025-984670)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984670 advisory. Improper initialization in UEFI firmware OutOfBandXML module in some IntelR Processors may allow a privileged user to potentially enable information disclosure via...

Important: microcode_ctl

Issue Overview: Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-20053 Missing reference to active allocated resource for some IntelR XeonR processors may all...

Amazon Linux 2 : microcode_ctl, --advisory ALAS2-2025-2993 (ALAS-2025-2993)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2993 advisory. Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to...

Important: microcode_ctl

Issue Overview: Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-20053 Missing reference to active allocated resource for some IntelR XeonR processors may all...

[Important] [Security] Fixes for vulnerabilities in sudo, rsync, and microcode_ctl (CVE-2025-32462, CVE-2024-12085, and CVE-2024-45332) for Virtuozzo Hybrid Server 7.5

This update fixes the vulnerabilities in sudo, rsync, and microcodectl registered as CVE-2025-32462, CVE-2024-12085, and CVE-2024-45332. Additionally, this update includes a fix for NetKVM drivers that caused some Windows virtual machines to crash. Vulnerability id: CVE-2025-32462 A privilege...

[Important] [Security] Fixes for vulnerabilities in sudo, rsync, and microcode_ctl (CVE-2025-32462, CVE-2024-12085, and CVE-2024-45332) for Virtuozzo Hybrid Server 7.5

This update resolves the vulnerabilities in sudo, rsync, and microcodectl registered as CVE-2025-32462, CVE-2024-12085, and CVE-2024-45332. Additionally, this update includes a fix for NetKVM drivers that caused some Windows virtual machines to crash. Vulnerability id: CVE-2025-32462 A privilege...

RockyLinux 8 : microcode_ctl (RLSA-2025:10991)

The remote RockyLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RLSA-2025:10991 advisory. microcodectl: From CVEorg collector CVE-2024-28956 Tenable has extracted the preceding description block directly from the RockyLinux security advisory...

RLSA-2025:10991 Moderate: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: microcodectl: From CVEorg collector CVE-2024-28956 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pag...