CVE-2024-21823

Summary

Hardware logic with insecure de-synchronization in Intel(R) DSA and Intel(R) IAA for some Intel(R) 4th or 5th generation Xeon(R) processors may allow an authorized user to potentially enable escalation of privilege local access

Affected Software

VendorProductVersion RangeStatus
n/aIntel(R) DSA and Intel(R) IAA for some Intel(R) 4th or 5th generation Xeon(R) processorsSee referencesaffected

Weaknesses

  • escalation of privilege
  • CWE-1264: Hardware Logic with Insecure De-Synchronization between Control and Data Channels

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References