Lucene search
IntelVULNRICHMENT:CVE-2023-22655HistoryMar 14, 2024 - 4:45 p.m.
CVE-2023-22655
2024-03-1416:45:46
CWE-693
intel
github.com
1
intel xeon processors
sgx
tdx
privilege escalation
local access
CVSS3
6.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N
AI Score
6.9
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Protection mechanism failure in some 3rd and 4th Generation Intel® Xeon® Processors when using Intel® SGX or Intel® TDX may allow a privileged user to potentially enable escalation of privilege via local access.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:intel:3rd_gen_intel_xeon_scalable_processor_family:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "3rd_gen_intel_xeon_scalable_processor_family",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:xeon_d_processor:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "xeon_d_processor",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_generation_intel_xeon_platinum_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_generation_intel_xeon_platinum_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_generation_intel_xeon_gold_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_generation_intel_xeon_gold_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_gen_intel_xeon_scalable_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_gen_intel_xeon_scalable_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_gen_intel_xeon_platinum_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_gen_intel_xeon_platinum_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_gen_intel_xeon_gold_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_gen_intel_xeon_gold_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_gen_intel_xeon_silver_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_gen_intel_xeon_silver_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_gen_intel_xeon_bronze_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_gen_intel_xeon_bronze_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:xeon_cpu_max_series_processors:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "xeon_cpu_max_series_processors",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:intel:4th_gen_intel_xeon_scalable_processors_with_intel_vran:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "4th_gen_intel_xeon_scalable_processors_with_intel_vran",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
redhatcve
redhatcve
CVE-2023-22655
2024-03-21 14:31:11
ubuntucve
ubuntucve
CVE-2023-22655
2024-03-12 00:00:00
nvd
nvd
CVE-2023-22655
2024-03-14 17:15:49
alpinelinux
alpinelinux
CVE-2023-22655
2024-03-14 17:15:49
debiancve
debiancve
CVE-2023-22655
2024-03-14 17:15:49
osv
osv
CVE-2023-22655
2024-03-14 17:15:49
intel-microcode - security update
2024-05-04 00:00:00
intel-microcode vulnerabilities
2024-05-29 07:13:42
cvelist
cvelist
CVE-2023-22655
2024-03-14 16:45:46
veracode
veracode
Privilege Escalation
2024-03-16 17:54:14
cve
cve
CVE-2023-22655
2024-03-14 17:15:49
redos
redos
ROS-20240902-08
2024-09-02 00:00:00
debian
debian
[SECURITY] [DLA 3808-1] intel-microcode security update
2024-05-04 15:21:16
freebsd
freebsd
Intel CPUs -- multiple vulnerabilities
2023-03-12 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3808-1)
2024-05-06 00:00:00
Mageia: Security Advisory (MGASA-2024-0103)
2024-04-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0917-1)
2024-05-07 00:00:00
nessus
nessus
Debian dla-3808 : intel-microcode - security update
2024-05-04 00:00:00
mageia
mageia
Updated microcode packages fix security vulnerabilities
2024-03-31 06:27:58
ubuntu
ubuntu
Intel Microcode vulnerabilities
2024-05-29 00:00:00
cloudfoundry
cloudfoundry
USN-6797-1: Intel Microcode vulnerabilities | Cloud Foundry
2024-07-25 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: microcode_ctl-2.1-61.1.fc40
2024-08-08 02:48:02
[SECURITY] Fedora 39 Update: microcode_ctl-2.1-58.1.fc39
2024-08-13 01:35:40
CVSS3
6.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N
AI Score
6.9
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2023-22655