CVE-2023-22655

MEDIUM6.1EPSS 0.04%

intel-microcode - security update

Published: 3/14/2024Modified: 4/28/2026

Description

Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.

Affected packages (3)

Alpine/intel-ucodefrom 0, < 20240813-r0
Debian/intel-microcodefrom 0, < 3.20240312.1~deb11u1
Debian/intel-microcodefrom 0, < 3.20240312.1~deb10u1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.1	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2023-22655
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2023-22655