Information Disclosure Vulnerability in Intel Processors
CVE-2024-28956

5.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Processors
Vendor: CVE Published:; 13 May 2025

What is CVE-2024-28956?

A recent vulnerability affecting certain Intel processors allows authenticated users to access sensitive information through shared microarchitectural structures during transient execution. This could potentially lead to unauthorized information disclosure if local access is gained. It is crucial for affected users and organizations to understand the implications and apply necessary mitigations to safeguard sensitive data.

Affected Version(s)

Intel(R) Processors See references

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 13, 2025
Vulnerability Reserved
May 23, 2024