Improper Access Control in 3rd Generation Intel Xeon Scalable Processors
CVE-2023-23908

6MEDIUM

What is CVE-2023-23908?

An improper access control vulnerability exists in certain 3rd Generation Intel Xeon Scalable processors. This flaw could potentially be exploited by a privileged user, allowing them to disclose sensitive information through local access methods. It is crucial for users of affected systems to review their access permissions and system configurations to mitigate this risk.

Affected Version(s)

3rd Generation Intel(R) Xeon(R) Scalable processors See references

References

CVSS V3.1

Score:
6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-23908 : Improper Access Control in 3rd Generation Intel Xeon Scalable Processors