rpm package

suse/ucode-intel&distro=SUSE Manager Proxy 4.3

pkg:rpm/suse/ucode-intel&distro=SUSE%20Manager%20Proxy%204.3

Vulnerabilities (31)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-24495	Med	5.6	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Incorrect initialization of resource in the branch prediction unit for some Intel(R) Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2025-20623	Med	5.6	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Core™ processors (10th Generation) may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2025-20103	Med	6.5	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
CVE-2025-20054	Med	6.5	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
CVE-2025-20012	Med	4.9	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Incorrect behavior order for some Intel(R) Core™ Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access.
CVE-2024-45332	Med	5.6	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2024-43420	Med	5.6	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2024-28956	Med	5.6	< 20250512-150200.56.1	20250512-150200.56.1	May 13, 2025	Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2024-39355	Med	6.5	< 20250211-150200.53.1	20250211-150200.53.1	Feb 12, 2025	Improper handling of physical or environmental conditions in some Intel(R) Processors may allow an authenticated user to enable denial of service via local access.
CVE-2024-37020	Low	3.8	< 20250211-150200.53.1	20250211-150200.53.1	Feb 12, 2025	Sequence of processor instructions leads to unexpected behavior in the Intel(R) DSA V1.0 for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
CVE-2024-36293	Med	6.5	< 20250211-150200.53.1	20250211-150200.53.1	Feb 12, 2025	Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.
CVE-2024-31068	Med	5.3	< 20250211-150200.53.1	20250211-150200.53.1	Feb 12, 2025	Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(R) Processors may allow privileged user to potentially enable denial of service via local access.
CVE-2024-23918	Hig	8.8	< 20241112-150200.50.1	20241112-150200.50.1	Nov 13, 2024	Improper conditions check in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2024-21853	Med	4.7	< 20241112-150200.50.1	20241112-150200.50.1	Nov 13, 2024	Improper finite state machines (FSMs) in the hardware logic in some 4th and 5th Generation Intel(R) Xeon(R) Processors may allow an authorized user to potentially enable denial of service via local access.
CVE-2024-21820	Hig	7.2	< 20241112-150200.50.1	20241112-150200.50.1	Nov 13, 2024	Incorrect default permissions in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2024-24968	Med	5.3	< 20240910-150200.47.1	20240910-150200.47.1	Sep 16, 2024	Improper finite state machines (FSMs) in hardware logic in some Intel(R) Processors may allow an privileged user to potentially enable a denial of service via local access.
CVE-2024-23984	Med	5.3	< 20240910-150200.47.1	20240910-150200.47.1	Sep 16, 2024	Observable discrepancy in RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
CVE-2024-25939	Med	6.0	< 20240813-150200.44.1	20240813-150200.44.1	Aug 14, 2024	Mirrored regions with different values in 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable denial of service via local access.
CVE-2024-24980	Med	6.1	< 20240813-150200.44.1	20240813-150200.44.1	Aug 14, 2024	Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2024-24853	Hig	7.2	< 20240813-150200.44.1	20240813-150200.44.1	Aug 14, 2024	Incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2025-24495MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Incorrect initialization of resource in the branch prediction unit for some Intel(R) Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2025-20623MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Core™ processors (10th Generation) may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2025-20103MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
CVE-2025-20054MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
CVE-2025-20012MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Incorrect behavior order for some Intel(R) Core™ Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access.
CVE-2024-45332MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2024-43420MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2024-28956MedMay 13, 2025
affected < 20250512-150200.56.1fixed 20250512-150200.56.1
Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2024-39355MedFeb 12, 2025
affected < 20250211-150200.53.1fixed 20250211-150200.53.1
Improper handling of physical or environmental conditions in some Intel(R) Processors may allow an authenticated user to enable denial of service via local access.
CVE-2024-37020LowFeb 12, 2025
affected < 20250211-150200.53.1fixed 20250211-150200.53.1
Sequence of processor instructions leads to unexpected behavior in the Intel(R) DSA V1.0 for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
CVE-2024-36293MedFeb 12, 2025
affected < 20250211-150200.53.1fixed 20250211-150200.53.1
Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.
CVE-2024-31068MedFeb 12, 2025
affected < 20250211-150200.53.1fixed 20250211-150200.53.1
Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(R) Processors may allow privileged user to potentially enable denial of service via local access.
CVE-2024-23918HigNov 13, 2024
affected < 20241112-150200.50.1fixed 20241112-150200.50.1
Improper conditions check in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2024-21853MedNov 13, 2024
affected < 20241112-150200.50.1fixed 20241112-150200.50.1
Improper finite state machines (FSMs) in the hardware logic in some 4th and 5th Generation Intel(R) Xeon(R) Processors may allow an authorized user to potentially enable denial of service via local access.
CVE-2024-21820HigNov 13, 2024
affected < 20241112-150200.50.1fixed 20241112-150200.50.1
Incorrect default permissions in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2024-24968MedSep 16, 2024
affected < 20240910-150200.47.1fixed 20240910-150200.47.1
Improper finite state machines (FSMs) in hardware logic in some Intel(R) Processors may allow an privileged user to potentially enable a denial of service via local access.
CVE-2024-23984MedSep 16, 2024
affected < 20240910-150200.47.1fixed 20240910-150200.47.1
Observable discrepancy in RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
CVE-2024-25939MedAug 14, 2024
affected < 20240813-150200.44.1fixed 20240813-150200.44.1
Mirrored regions with different values in 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable denial of service via local access.
CVE-2024-24980MedAug 14, 2024
affected < 20240813-150200.44.1fixed 20240813-150200.44.1
Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2024-24853HigAug 14, 2024
affected < 20240813-150200.44.1fixed 20240813-150200.44.1
Incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege via local access.

Page 1 of 2