Out-of-Bounds Read Vulnerability in Intel TDX Software
CVE-2024-33607

5.7MEDIUM

Key Information:

Vendor

Intel
Status
Intel(r) Tdx Module Software
Vendor
CVE Published:
12 August 2025

What is CVE-2024-33607?

An out-of-bounds read vulnerability exists in Intel TDX module software prior to version TDX_1.5.07.00.774, which may allow authenticated users to access sensitive information via local access methods. This flaw could potentially lead to unintended information disclosure, raising security concerns for environments utilizing affected TDX modules.

Affected Version(s)

Intel(R) TDX module software before version TDX_1.5.07.00.774

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2024-33607 : Out-of-Bounds Read Vulnerability in Intel TDX Software