rpm package
suse/ucode-intel&distro=SUSE Manager Proxy 4.3
pkg:rpm/suse/ucode-intel&distro=SUSE%20Manager%20Proxy%204.3
Vulnerabilities (31)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-49141 | Hig | 7.8 | < 20240813-150200.44.1 | 20240813-150200.44.1 | Aug 14, 2024 | Improper isolation in some Intel(R) Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access. | |
| CVE-2023-42667 | Hig | 7.8 | < 20240813-150200.44.1 | 20240813-150200.44.1 | Aug 14, 2024 | Improper isolation in the Intel(R) Core(TM) Ultra Processor stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access. | |
| CVE-2023-46103 | Med | 4.7 | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access. | |
| CVE-2023-45733 | Low | 2.8 | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access. | |
| CVE-2023-47855 | — | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-45745 | — | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-43490 | Med | 5.3 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access. | |
| CVE-2023-39368 | Med | 6.5 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access. | |
| CVE-2023-38575 | Med | 5.5 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | |
| CVE-2023-28746 | Med | 6.5 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | |
| CVE-2023-22655 | Med | 6.1 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access. |
- affected < 20240813-150200.44.1fixed 20240813-150200.44.1
Improper isolation in some Intel(R) Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access.
- affected < 20240813-150200.44.1fixed 20240813-150200.44.1
Improper isolation in the Intel(R) Core(TM) Ultra Processor stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access.
- affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access.
- affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access.
- CVE-2023-47855May 16, 2024affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2023-45745May 16, 2024affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.
Page 2 of 2