Lucene search

K
ubuntucveUbuntu.comUB:CVE-2024-21823
HistoryMay 16, 2024 - 12:00 a.m.

CVE-2024-21823

2024-05-1600:00:00
ubuntu.com
ubuntu.com
4
hardware de-synchronization intel xeon processors unauthorized access potential denial of service bugzilla redhat suse unix

6.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

Hardware logic with insecure de-synchronization in Intel® DSA and
Intel® IAA for some Intel® 4th or 5th generation Xeon® processors may
allow an authorized user to potentially enable denial of service via local
access.

Bugs

6.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%