Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-48869 (GCVE-0-2024-48869)
Vulnerability from cvelistv5 – Published: 2025-05-13 21:03 – Updated: 2025-05-15 04:01
VLAI?
EPSS
Summary
Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access.
Severity ?
6.1 (Medium)
CWE
- Escalation of Privilege
- CWE-1256 - Improper Restriction of Software Interfaces to Hardware Features
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) |
Affected:
See references
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-48869",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-14T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-05-15T04:01:18.444Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX)",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "See references"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N",
"version": "3.1"
},
"cvssV4_0": {
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "LOCAL",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"privilegesRequired": "HIGH",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "HIGH"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Escalation of Privilege",
"lang": "en"
},
{
"cweId": "CWE-1256",
"description": "Improper Restriction of Software Interfaces to Hardware Features",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-13T21:03:22.922Z",
"orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"shortName": "intel"
},
"references": [
{
"name": "https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html",
"url": "https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"assignerShortName": "intel",
"cveId": "CVE-2024-48869",
"datePublished": "2025-05-13T21:03:22.922Z",
"dateReserved": "2024-10-09T02:59:22.185Z",
"dateUpdated": "2025-05-15T04:01:18.444Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-48869\",\"sourceIdentifier\":\"secure@intel.com\",\"published\":\"2025-05-13T21:16:02.227\",\"lastModified\":\"2025-05-16T14:43:56.797\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access.\"},{\"lang\":\"es\",\"value\":\"La restricci\u00f3n inadecuada de las interfaces de software a las caracter\u00edsticas del hardware para algunos procesadores Intel(R) Xeon(R) 6 E-cores cuando se utilizan Intel(R) Trust Domain Extensions (Intel(R) TDX) o Intel(R) Software Guard Extensions (Intel(R) SGX) puede permitir que un usuario privilegiado habilite potencialmente la escalada de privilegios a trav\u00e9s del acceso local.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"secure@intel.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":5.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"secure@intel.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":0.8,\"impactScore\":4.7}]},\"weaknesses\":[{\"source\":\"secure@intel.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1256\"}]}],\"references\":[{\"url\":\"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html\",\"source\":\"secure@intel.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-48869\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-14T16:54:00.912713Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-14T16:55:39.594Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 6.1, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"LOW\"}, \"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 5.6, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"HIGH\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"NONE\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX)\", \"versions\": [{\"status\": \"affected\", \"version\": \"See references\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html\", \"name\": \"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"Escalation of Privilege\"}, {\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1256\", \"description\": \"Improper Restriction of Software Interfaces to Hardware Features\"}]}], \"providerMetadata\": {\"orgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"shortName\": \"intel\", \"dateUpdated\": \"2025-05-13T21:03:22.922Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-48869\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-15T04:01:18.444Z\", \"dateReserved\": \"2024-10-09T02:59:22.185Z\", \"assignerOrgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"datePublished\": \"2025-05-13T21:03:22.922Z\", \"assignerShortName\": \"intel\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2025-AVI-0402
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Intel. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Intel | N/A | Intel RealSense SDK software versions antérieures à 2.56.2. | ||
| Intel | N/A | Intel Advisor standalone component software software versions antérieures à 2024.2. | ||
| Intel | N/A | Intel Server Board D50DNP et M50FCP UEFI versions antérieures à R01.02.0003. | ||
| Intel | N/A | Intel Ethernet Connections Boot Utility versions antérieures à 29.4. | ||
| Intel | N/A | 9th Gen Intel Core processor family | ||
| Intel | N/A | OpenVINO model server software maintained by Intel versions antérieures à 2024.4. | ||
| Intel | N/A | Intel oneAPI Level Zero software versions antérieures à 1.5.4. | ||
| Intel | N/A | NVM Update Utility for Intel Ethernet Network Adapter E810 Series versions antérieures à 4.6. | ||
| Intel | N/A | Intel Arc Pro graphics versions antérieures à 32.0.101.6303. | ||
| Intel | N/A | Intel Graphics Driver software versions antérieures à 32.0.101.6083_101.5736. | ||
| Intel | N/A | Intel oneAPI Base Toolkit versions antérieures à 2024.2. | ||
| Intel | N/A | Intel Atom, Pentium et Celeron processor family | ||
| Intel | N/A | Intel Iris Xe Dedicated Graphics family | ||
| Intel | N/A | Edge Orchestrator software versions antérieures à 24.11 for Intel Tiber Edge Platform. | ||
| Intel | N/A | Endurance Gaming Mode software versions antérieures à 1.5.651.0. | ||
| Intel | N/A | Intel QAT software versions antérieures à 2.3.0. | ||
| Intel | N/A | Intel Network Adapter Driver for Microsoft Windows 11 versions antérieures à 29.4. | ||
| Intel | N/A | 13th Gen Intel Core processor family | ||
| Intel | N/A | 12th Gen Intel Core processor family | ||
| Intel | N/A | FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler software for Windows versions antérieures à 2025.0.0. | ||
| Intel | N/A | 7th-10th Gen Intel Core processor family versions antérieures à 31.0.101.2134. | ||
| Intel | N/A | Intel Atom, Pentium et Celeron processors versions antérieures à 31.0.101.2134. | ||
| Intel | N/A | Intel Arc Graphics family | ||
| Intel | N/A | Intel Data Center GPU Flex Series versions antérieures à 32.0.101.6314. | ||
| Intel | N/A | 10th Gen Intel Core processor family | ||
| Intel | N/A | Intel Graphics Windows DCH driver software versions antérieures à 30.0.100.9955. | ||
| Intel | N/A | Intel 7th-10th Gen Processor Graphics for Windows driver versions antérieures à 31.0.101.2130: | ||
| Intel | N/A | Intel Data Center GPU Flex Series for Windows driver versions antérieures à 31.0.101.4314: Intel Data Center GPU Flex 140 Intel Data Center GPU Flex 170 | ||
| Intel | N/A | Administrative Tools for Intel Network Adapters versions antérieures à 29.4. | ||
| Intel | N/A | Intel Arc et Iris Xe Graphics for Windows driver versions antérieures à 32.0.101.6083/32.0.101.5736: | ||
| Intel | N/A | Intel Graphics Drivers pour Intel Arc graphics versions antérieures à 32.0.101.6449/32.0.101.6256. | ||
| Intel | N/A | Intel 6th Gen Processor Graphics driver toutes versions. | ||
| Intel | N/A | Intel Core Ultra processor family | ||
| Intel | N/A | 11th Gen Intel Core processor family | ||
| Intel | N/A | 8th Gen Intel Core processor family | ||
| Intel | N/A | Intel Graphics Windows DCH driver software versions antérieures à 30.0.101.1191. | ||
| Intel | N/A | Intel Ethernet Adapter Complete Driver Pack versions antérieures à 29.4. | ||
| Intel | N/A | 7th Gen Intel Core processor family | ||
| Intel | N/A | Intel Gaudi software installer versions antérieures à before 1.18. | ||
| Intel | N/A | Intel oneAPI DPC++/C++ Compiler software versions antérieures à 2025.0.0 | ||
| Intel | N/A | Intel Arc™ Pro A-series graphics versions antérieures à 30.0.101.1729. | ||
| Intel | N/A | Intel Core Processor with Intel Hybrid Technology | ||
| Intel | N/A | Intel Simics Package Manager software versions antérieures à 1.12.0. | ||
| Intel | N/A | 14th Gen Intel Core processor family | ||
| Intel | N/A | Intel Pentium et Celeron processor family | ||
| Intel | N/A | Intel Arc™ A-Series graphics versions antérieures à 31.0.101.3277. | ||
| Intel | N/A | Intel Iris Xe graphics versions antérieures à 32.0.101.6449/32.0.101.6256. |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Intel RealSense SDK software versions ant\u00e9rieures \u00e0 2.56.2.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Advisor standalone component software software versions ant\u00e9rieures \u00e0 2024.2.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Server Board D50DNP et M50FCP UEFI versions ant\u00e9rieures \u00e0 R01.02.0003.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Ethernet Connections Boot Utility versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "9th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "OpenVINO model server software maintained by Intel versions ant\u00e9rieures \u00e0 2024.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel oneAPI Level Zero software versions ant\u00e9rieures \u00e0 1.5.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "NVM Update Utility for Intel Ethernet Network Adapter E810 Series versions ant\u00e9rieures \u00e0 4.6.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc Pro graphics versions ant\u00e9rieures \u00e0 32.0.101.6303.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Driver software versions ant\u00e9rieures \u00e0 32.0.101.6083_101.5736.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel oneAPI Base Toolkit versions ant\u00e9rieures \u00e0 2024.2.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Atom, Pentium et Celeron processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Iris Xe Dedicated Graphics family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Edge Orchestrator software versions ant\u00e9rieures \u00e0 24.11 for Intel Tiber Edge Platform.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Endurance Gaming Mode software versions ant\u00e9rieures \u00e0 1.5.651.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel QAT software versions ant\u00e9rieures \u00e0 2.3.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Network Adapter Driver for Microsoft Windows 11 versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "13th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "12th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler software for Windows versions ant\u00e9rieures \u00e0 2025.0.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "7th-10th Gen Intel Core processor family versions ant\u00e9rieures \u00e0 31.0.101.2134.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Atom, Pentium et Celeron processors versions ant\u00e9rieures \u00e0 31.0.101.2134.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc Graphics family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Data Center GPU Flex Series versions ant\u00e9rieures \u00e0 32.0.101.6314.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "10th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Windows DCH driver software versions ant\u00e9rieures \u00e0 30.0.100.9955.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel 7th-10th Gen Processor Graphics for Windows driver versions ant\u00e9rieures \u00e0 31.0.101.2130:",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Data Center GPU Flex Series for Windows driver versions ant\u00e9rieures \u00e0 31.0.101.4314:\n\nIntel Data Center GPU Flex 140\nIntel Data Center GPU Flex 170\n",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Administrative Tools for Intel Network Adapters versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc et Iris Xe Graphics for Windows driver versions ant\u00e9rieures \u00e0 32.0.101.6083/32.0.101.5736:",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Drivers pour Intel Arc graphics versions ant\u00e9rieures \u00e0 32.0.101.6449/32.0.101.6256.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel 6th Gen Processor Graphics driver toutes versions.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Core Ultra processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "11th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "8th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Windows DCH driver software versions ant\u00e9rieures \u00e0 30.0.101.1191.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Ethernet Adapter Complete Driver Pack versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "7th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Gaudi software installer versions ant\u00e9rieures \u00e0 before 1.18.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel oneAPI DPC++/C++ Compiler software versions ant\u00e9rieures \u00e0 2025.0.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc\u2122 Pro A-series graphics versions ant\u00e9rieures \u00e0 30.0.101.1729.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Core Processor with Intel Hybrid Technology",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Simics Package Manager software versions ant\u00e9rieures \u00e0 1.12.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "14th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Pentium et Celeron processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc\u2122 A-Series graphics versions ant\u00e9rieures \u00e0 31.0.101.3277.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Iris Xe graphics versions ant\u00e9rieures \u00e0 32.0.101.6449/32.0.101.6256.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-20618",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20618"
},
{
"name": "CVE-2025-20008",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20008"
},
{
"name": "CVE-2024-31150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31150"
},
{
"name": "CVE-2025-20041",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20041"
},
{
"name": "CVE-2025-20043",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20043"
},
{
"name": "CVE-2025-21099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21099"
},
{
"name": "CVE-2025-22892",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22892"
},
{
"name": "CVE-2025-20084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20084"
},
{
"name": "CVE-2025-20022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20022"
},
{
"name": "CVE-2025-23233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23233"
},
{
"name": "CVE-2025-20095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20095"
},
{
"name": "CVE-2025-20101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20101"
},
{
"name": "CVE-2024-45067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45067"
},
{
"name": "CVE-2024-43420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43420"
},
{
"name": "CVE-2025-22848",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22848"
},
{
"name": "CVE-2025-20039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20039"
},
{
"name": "CVE-2025-20006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20006"
},
{
"name": "CVE-2025-22843",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22843"
},
{
"name": "CVE-2025-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21094"
},
{
"name": "CVE-2025-20616",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20616"
},
{
"name": "CVE-2025-22446",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22446"
},
{
"name": "CVE-2024-48869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48869"
},
{
"name": "CVE-2024-28954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28954"
},
{
"name": "CVE-2024-39833",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39833"
},
{
"name": "CVE-2025-20003",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20003"
},
{
"name": "CVE-2025-20629",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20629"
},
{
"name": "CVE-2024-21829",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21829"
},
{
"name": "CVE-2025-20018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20018"
},
{
"name": "CVE-2025-22895",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22895"
},
{
"name": "CVE-2024-43101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43101"
},
{
"name": "CVE-2025-20013",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20013"
},
{
"name": "CVE-2025-22844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22844"
},
{
"name": "CVE-2025-20057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20057"
},
{
"name": "CVE-2025-21100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21100"
},
{
"name": "CVE-2024-47550",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47550"
},
{
"name": "CVE-2024-39758",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39758"
},
{
"name": "CVE-2024-21859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21859"
},
{
"name": "CVE-2025-20612",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20612"
},
{
"name": "CVE-2025-20046",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20046"
},
{
"name": "CVE-2024-47800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47800"
},
{
"name": "CVE-2025-24308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24308"
},
{
"name": "CVE-2025-20611",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20611"
},
{
"name": "CVE-2024-28047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28047"
},
{
"name": "CVE-2025-20082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20082"
},
{
"name": "CVE-2025-20054",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20054"
},
{
"name": "CVE-2025-20034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20034"
},
{
"name": "CVE-2025-20047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20047"
},
{
"name": "CVE-2024-31073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31073"
},
{
"name": "CVE-2025-20079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20079"
},
{
"name": "CVE-2025-20052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20052"
},
{
"name": "CVE-2024-29222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29222"
},
{
"name": "CVE-2025-21081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21081"
},
{
"name": "CVE-2025-22448",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22448"
},
{
"name": "CVE-2025-20015",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20015"
},
{
"name": "CVE-2025-20083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20083"
},
{
"name": "CVE-2025-20026",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20026"
},
{
"name": "CVE-2025-20624",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20624"
},
{
"name": "CVE-2025-20103",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20103"
},
{
"name": "CVE-2024-46895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46895"
},
{
"name": "CVE-2024-36292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36292"
},
{
"name": "CVE-2025-20071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20071"
},
{
"name": "CVE-2025-20031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20031"
},
{
"name": "CVE-2025-20100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20100"
},
{
"name": "CVE-2025-20104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20104"
},
{
"name": "CVE-2024-31157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31157"
},
{
"name": "CVE-2025-20108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20108"
},
{
"name": "CVE-2025-20623",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20623"
},
{
"name": "CVE-2025-20076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20076"
},
{
"name": "CVE-2024-28036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28036"
},
{
"name": "CVE-2024-45333",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45333"
},
{
"name": "CVE-2024-47795",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47795"
},
{
"name": "CVE-2025-20032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20032"
},
{
"name": "CVE-2025-20004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20004"
},
{
"name": "CVE-2025-20009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20009"
},
{
"name": "CVE-2024-31155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31155"
},
{
"name": "CVE-2025-20062",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20062"
},
{
"name": "CVE-2024-45332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45332"
},
{
"name": "CVE-2024-45371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45371"
},
{
"name": "CVE-2025-20030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20030"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0402",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-05-14T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Intel. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Intel",
"vendor_advisories": [
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01268",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01216",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01216.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01271",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01271.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01290",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01290.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01252",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01252.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01274",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01274.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01293",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01293.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01305",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01305.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01263",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01263.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01244",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01244.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01254",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01254.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01270",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01270.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01272",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01272.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01297",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01297.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01259",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01259.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01278",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01278.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01239",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01239.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01273",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01273.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01180",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01180.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01295",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01295.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01253",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01253.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01243",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01243.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01269",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01269.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01247",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01294",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01294.html"
}
]
}
CERTFR-2025-AVI-0402
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Intel. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Intel | N/A | Intel RealSense SDK software versions antérieures à 2.56.2. | ||
| Intel | N/A | Intel Advisor standalone component software software versions antérieures à 2024.2. | ||
| Intel | N/A | Intel Server Board D50DNP et M50FCP UEFI versions antérieures à R01.02.0003. | ||
| Intel | N/A | Intel Ethernet Connections Boot Utility versions antérieures à 29.4. | ||
| Intel | N/A | 9th Gen Intel Core processor family | ||
| Intel | N/A | OpenVINO model server software maintained by Intel versions antérieures à 2024.4. | ||
| Intel | N/A | Intel oneAPI Level Zero software versions antérieures à 1.5.4. | ||
| Intel | N/A | NVM Update Utility for Intel Ethernet Network Adapter E810 Series versions antérieures à 4.6. | ||
| Intel | N/A | Intel Arc Pro graphics versions antérieures à 32.0.101.6303. | ||
| Intel | N/A | Intel Graphics Driver software versions antérieures à 32.0.101.6083_101.5736. | ||
| Intel | N/A | Intel oneAPI Base Toolkit versions antérieures à 2024.2. | ||
| Intel | N/A | Intel Atom, Pentium et Celeron processor family | ||
| Intel | N/A | Intel Iris Xe Dedicated Graphics family | ||
| Intel | N/A | Edge Orchestrator software versions antérieures à 24.11 for Intel Tiber Edge Platform. | ||
| Intel | N/A | Endurance Gaming Mode software versions antérieures à 1.5.651.0. | ||
| Intel | N/A | Intel QAT software versions antérieures à 2.3.0. | ||
| Intel | N/A | Intel Network Adapter Driver for Microsoft Windows 11 versions antérieures à 29.4. | ||
| Intel | N/A | 13th Gen Intel Core processor family | ||
| Intel | N/A | 12th Gen Intel Core processor family | ||
| Intel | N/A | FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler software for Windows versions antérieures à 2025.0.0. | ||
| Intel | N/A | 7th-10th Gen Intel Core processor family versions antérieures à 31.0.101.2134. | ||
| Intel | N/A | Intel Atom, Pentium et Celeron processors versions antérieures à 31.0.101.2134. | ||
| Intel | N/A | Intel Arc Graphics family | ||
| Intel | N/A | Intel Data Center GPU Flex Series versions antérieures à 32.0.101.6314. | ||
| Intel | N/A | 10th Gen Intel Core processor family | ||
| Intel | N/A | Intel Graphics Windows DCH driver software versions antérieures à 30.0.100.9955. | ||
| Intel | N/A | Intel 7th-10th Gen Processor Graphics for Windows driver versions antérieures à 31.0.101.2130: | ||
| Intel | N/A | Intel Data Center GPU Flex Series for Windows driver versions antérieures à 31.0.101.4314: Intel Data Center GPU Flex 140 Intel Data Center GPU Flex 170 | ||
| Intel | N/A | Administrative Tools for Intel Network Adapters versions antérieures à 29.4. | ||
| Intel | N/A | Intel Arc et Iris Xe Graphics for Windows driver versions antérieures à 32.0.101.6083/32.0.101.5736: | ||
| Intel | N/A | Intel Graphics Drivers pour Intel Arc graphics versions antérieures à 32.0.101.6449/32.0.101.6256. | ||
| Intel | N/A | Intel 6th Gen Processor Graphics driver toutes versions. | ||
| Intel | N/A | Intel Core Ultra processor family | ||
| Intel | N/A | 11th Gen Intel Core processor family | ||
| Intel | N/A | 8th Gen Intel Core processor family | ||
| Intel | N/A | Intel Graphics Windows DCH driver software versions antérieures à 30.0.101.1191. | ||
| Intel | N/A | Intel Ethernet Adapter Complete Driver Pack versions antérieures à 29.4. | ||
| Intel | N/A | 7th Gen Intel Core processor family | ||
| Intel | N/A | Intel Gaudi software installer versions antérieures à before 1.18. | ||
| Intel | N/A | Intel oneAPI DPC++/C++ Compiler software versions antérieures à 2025.0.0 | ||
| Intel | N/A | Intel Arc™ Pro A-series graphics versions antérieures à 30.0.101.1729. | ||
| Intel | N/A | Intel Core Processor with Intel Hybrid Technology | ||
| Intel | N/A | Intel Simics Package Manager software versions antérieures à 1.12.0. | ||
| Intel | N/A | 14th Gen Intel Core processor family | ||
| Intel | N/A | Intel Pentium et Celeron processor family | ||
| Intel | N/A | Intel Arc™ A-Series graphics versions antérieures à 31.0.101.3277. | ||
| Intel | N/A | Intel Iris Xe graphics versions antérieures à 32.0.101.6449/32.0.101.6256. |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Intel RealSense SDK software versions ant\u00e9rieures \u00e0 2.56.2.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Advisor standalone component software software versions ant\u00e9rieures \u00e0 2024.2.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Server Board D50DNP et M50FCP UEFI versions ant\u00e9rieures \u00e0 R01.02.0003.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Ethernet Connections Boot Utility versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "9th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "OpenVINO model server software maintained by Intel versions ant\u00e9rieures \u00e0 2024.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel oneAPI Level Zero software versions ant\u00e9rieures \u00e0 1.5.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "NVM Update Utility for Intel Ethernet Network Adapter E810 Series versions ant\u00e9rieures \u00e0 4.6.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc Pro graphics versions ant\u00e9rieures \u00e0 32.0.101.6303.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Driver software versions ant\u00e9rieures \u00e0 32.0.101.6083_101.5736.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel oneAPI Base Toolkit versions ant\u00e9rieures \u00e0 2024.2.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Atom, Pentium et Celeron processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Iris Xe Dedicated Graphics family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Edge Orchestrator software versions ant\u00e9rieures \u00e0 24.11 for Intel Tiber Edge Platform.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Endurance Gaming Mode software versions ant\u00e9rieures \u00e0 1.5.651.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel QAT software versions ant\u00e9rieures \u00e0 2.3.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Network Adapter Driver for Microsoft Windows 11 versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "13th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "12th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler software for Windows versions ant\u00e9rieures \u00e0 2025.0.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "7th-10th Gen Intel Core processor family versions ant\u00e9rieures \u00e0 31.0.101.2134.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Atom, Pentium et Celeron processors versions ant\u00e9rieures \u00e0 31.0.101.2134.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc Graphics family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Data Center GPU Flex Series versions ant\u00e9rieures \u00e0 32.0.101.6314.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "10th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Windows DCH driver software versions ant\u00e9rieures \u00e0 30.0.100.9955.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel 7th-10th Gen Processor Graphics for Windows driver versions ant\u00e9rieures \u00e0 31.0.101.2130:",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Data Center GPU Flex Series for Windows driver versions ant\u00e9rieures \u00e0 31.0.101.4314:\n\nIntel Data Center GPU Flex 140\nIntel Data Center GPU Flex 170\n",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Administrative Tools for Intel Network Adapters versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc et Iris Xe Graphics for Windows driver versions ant\u00e9rieures \u00e0 32.0.101.6083/32.0.101.5736:",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Drivers pour Intel Arc graphics versions ant\u00e9rieures \u00e0 32.0.101.6449/32.0.101.6256.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel 6th Gen Processor Graphics driver toutes versions.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Core Ultra processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "11th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "8th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Graphics Windows DCH driver software versions ant\u00e9rieures \u00e0 30.0.101.1191.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Ethernet Adapter Complete Driver Pack versions ant\u00e9rieures \u00e0 29.4.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "7th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Gaudi software installer versions ant\u00e9rieures \u00e0 before 1.18.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel oneAPI DPC++/C++ Compiler software versions ant\u00e9rieures \u00e0 2025.0.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc\u2122 Pro A-series graphics versions ant\u00e9rieures \u00e0 30.0.101.1729.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Core Processor with Intel Hybrid Technology",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Simics Package Manager software versions ant\u00e9rieures \u00e0 1.12.0.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "14th Gen Intel Core processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Pentium et Celeron processor family",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Arc\u2122 A-Series graphics versions ant\u00e9rieures \u00e0 31.0.101.3277.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Iris Xe graphics versions ant\u00e9rieures \u00e0 32.0.101.6449/32.0.101.6256.",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-20618",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20618"
},
{
"name": "CVE-2025-20008",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20008"
},
{
"name": "CVE-2024-31150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31150"
},
{
"name": "CVE-2025-20041",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20041"
},
{
"name": "CVE-2025-20043",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20043"
},
{
"name": "CVE-2025-21099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21099"
},
{
"name": "CVE-2025-22892",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22892"
},
{
"name": "CVE-2025-20084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20084"
},
{
"name": "CVE-2025-20022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20022"
},
{
"name": "CVE-2025-23233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23233"
},
{
"name": "CVE-2025-20095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20095"
},
{
"name": "CVE-2025-20101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20101"
},
{
"name": "CVE-2024-45067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45067"
},
{
"name": "CVE-2024-43420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43420"
},
{
"name": "CVE-2025-22848",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22848"
},
{
"name": "CVE-2025-20039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20039"
},
{
"name": "CVE-2025-20006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20006"
},
{
"name": "CVE-2025-22843",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22843"
},
{
"name": "CVE-2025-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21094"
},
{
"name": "CVE-2025-20616",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20616"
},
{
"name": "CVE-2025-22446",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22446"
},
{
"name": "CVE-2024-48869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48869"
},
{
"name": "CVE-2024-28954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28954"
},
{
"name": "CVE-2024-39833",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39833"
},
{
"name": "CVE-2025-20003",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20003"
},
{
"name": "CVE-2025-20629",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20629"
},
{
"name": "CVE-2024-21829",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21829"
},
{
"name": "CVE-2025-20018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20018"
},
{
"name": "CVE-2025-22895",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22895"
},
{
"name": "CVE-2024-43101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43101"
},
{
"name": "CVE-2025-20013",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20013"
},
{
"name": "CVE-2025-22844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22844"
},
{
"name": "CVE-2025-20057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20057"
},
{
"name": "CVE-2025-21100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21100"
},
{
"name": "CVE-2024-47550",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47550"
},
{
"name": "CVE-2024-39758",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39758"
},
{
"name": "CVE-2024-21859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21859"
},
{
"name": "CVE-2025-20612",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20612"
},
{
"name": "CVE-2025-20046",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20046"
},
{
"name": "CVE-2024-47800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47800"
},
{
"name": "CVE-2025-24308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24308"
},
{
"name": "CVE-2025-20611",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20611"
},
{
"name": "CVE-2024-28047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28047"
},
{
"name": "CVE-2025-20082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20082"
},
{
"name": "CVE-2025-20054",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20054"
},
{
"name": "CVE-2025-20034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20034"
},
{
"name": "CVE-2025-20047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20047"
},
{
"name": "CVE-2024-31073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31073"
},
{
"name": "CVE-2025-20079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20079"
},
{
"name": "CVE-2025-20052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20052"
},
{
"name": "CVE-2024-29222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29222"
},
{
"name": "CVE-2025-21081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21081"
},
{
"name": "CVE-2025-22448",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22448"
},
{
"name": "CVE-2025-20015",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20015"
},
{
"name": "CVE-2025-20083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20083"
},
{
"name": "CVE-2025-20026",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20026"
},
{
"name": "CVE-2025-20624",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20624"
},
{
"name": "CVE-2025-20103",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20103"
},
{
"name": "CVE-2024-46895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46895"
},
{
"name": "CVE-2024-36292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36292"
},
{
"name": "CVE-2025-20071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20071"
},
{
"name": "CVE-2025-20031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20031"
},
{
"name": "CVE-2025-20100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20100"
},
{
"name": "CVE-2025-20104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20104"
},
{
"name": "CVE-2024-31157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31157"
},
{
"name": "CVE-2025-20108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20108"
},
{
"name": "CVE-2025-20623",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20623"
},
{
"name": "CVE-2025-20076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20076"
},
{
"name": "CVE-2024-28036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28036"
},
{
"name": "CVE-2024-45333",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45333"
},
{
"name": "CVE-2024-47795",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47795"
},
{
"name": "CVE-2025-20032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20032"
},
{
"name": "CVE-2025-20004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20004"
},
{
"name": "CVE-2025-20009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20009"
},
{
"name": "CVE-2024-31155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31155"
},
{
"name": "CVE-2025-20062",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20062"
},
{
"name": "CVE-2024-45332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45332"
},
{
"name": "CVE-2024-45371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45371"
},
{
"name": "CVE-2025-20030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20030"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0402",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-05-14T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Intel. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Intel",
"vendor_advisories": [
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01268",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01216",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01216.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01271",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01271.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01290",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01290.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01252",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01252.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01274",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01274.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01293",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01293.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01305",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01305.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01263",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01263.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01244",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01244.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01254",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01254.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01270",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01270.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01272",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01272.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01297",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01297.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01259",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01259.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01278",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01278.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01239",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01239.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01273",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01273.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01180",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01180.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01295",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01295.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01253",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01253.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01243",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01243.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01269",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01269.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01247",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html"
},
{
"published_at": "2025-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-01294",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01294.html"
}
]
}
WID-SEC-W-2025-1030
Vulnerability from csaf_certbund - Published: 2025-05-13 22:00 - Updated: 2025-06-19 22:00Summary
Intel Prozessoren: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Der Prozessor ist das zentrale Rechenwerk eines Computers.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Intel Prozessoren ausnutzen, um seine Privilegien zu erhöhen, einen Denial-of-Service-Zustand herbeizuführen und vertrauliche Informationen preiszugeben.
Betroffene Betriebssysteme
- Hardware Appliance
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Prozessor ist das zentrale Rechenwerk eines Computers.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Intel Prozessoren ausnutzen, um seine Privilegien zu erh\u00f6hen, einen Denial-of-Service-Zustand herbeizuf\u00fchren und vertrauliche Informationen preiszugeben.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Hardware Appliance",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1030 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1030.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1030 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1030"
},
{
"category": "external",
"summary": "Intel Core Ultra Processors CNVi Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01180.html"
},
{
"category": "external",
"summary": "2025.2 IPU, Intel Processor Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01244.html"
},
{
"category": "external",
"summary": "2025.2 IPU - Intel Processor Indirect Branch Predictor Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html"
},
{
"category": "external",
"summary": "Intel Xeon 6 processor with E-cores SGX and TDX Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html"
},
{
"category": "external",
"summary": "Intel Xeon 6 processor E-Cores with Alias Checking Trusted Module Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01273.html"
},
{
"category": "external",
"summary": "Intel Xeon 6 processor with E-cores Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01278.html"
},
{
"category": "external",
"summary": "Intel Slim Bootloader Advisory vom 2025-05-13",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01290.html"
},
{
"category": "external",
"summary": "Google Cloud Platform Security Bulletin GCP-2025-025 vom 2025-05-14",
"url": "https://cloud.google.com/support/bulletins#gcp-2025-025"
},
{
"category": "external",
"summary": "HPE Security Bulletin HPESBHF04858 rev.1 vom 2025-05-13",
"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04858en_us\u0026docLocale=en_US"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-048 vom 2025-05-13",
"url": "https://www.dell.com/support/kbdoc/de-de/000272449/dsa-2025-048"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-156 vom 2025-05-13",
"url": "https://www.dell.com/support/kbdoc/de-de/000320934/dsa-2025-156-security-update-for-dell-poweredge-server-for-intel-2025-security-advisories-2025-2-ipu"
},
{
"category": "external",
"summary": "HPE Security Bulletin HPESBHF04860 rev.1 vom 2025-05-13",
"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04860en_us\u0026docLocale=en_US"
},
{
"category": "external",
"summary": "Lenovo Security Advisory LEN-195071 vom 2025-05-14",
"url": "https://support.lenovo.com/us/en/product_security/LEN-195071"
},
{
"category": "external",
"summary": "PoC f\u00fcr CVE-2024-45332 vom 2025-05-14",
"url": "https://comsec.ethz.ch/research/microarch/branch-privilege-injection/"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4170 vom 2025-05-18",
"url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00021.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1567-1 vom 2025-05-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020842.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:15093-1 vom 2025-05-16",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:01650-1 vom 2025-05-22",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020877.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:01651-1 vom 2025-05-22",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/6G75W2R3WRICVZLBNWSHQ44DL3TMTL6V/"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5924 vom 2025-05-23",
"url": "https://lists.debian.org/debian-security-announce/2025/msg00087.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-ABF317121E vom 2025-05-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-abf317121e"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-E5D3928F2C vom 2025-05-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-e5d3928f2c"
},
{
"category": "external",
"summary": "HP Security Bulletin HPSBHF04024 vom 2025-04-11",
"url": "https://support.hp.com/de-de/document/ish_12559622-12559652-16/HPSBHF04024"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7535-1 vom 2025-05-27",
"url": "https://ubuntu.com/security/notices/USN-7535-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:01651-2 vom 2025-05-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020928.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2025-2872 vom 2025-05-29",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2025-2872.html"
},
{
"category": "external",
"summary": "HP Security Bulletin HPSBHF04026 vom 2025-04-11",
"url": "https://support.hp.com/us-en/document/ish_12568527-12568549-16/HPSBHF04026"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20410-1 vom 2025-06-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021549.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20424-1 vom 2025-06-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021589.html"
}
],
"source_lang": "en-US",
"title": "Intel Prozessoren: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-19T22:00:00.000+00:00",
"generator": {
"date": "2025-06-20T10:54:09.055+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2025-1030",
"initial_release_date": "2025-05-13T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-05-13T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-05-14T22:00:00.000+00:00",
"number": "2",
"summary": "PoC aufgenommen"
},
{
"date": "2025-05-15T22:00:00.000+00:00",
"number": "3",
"summary": "Referenz(en) aufgenommen: EUVD-2025-14567"
},
{
"date": "2025-05-18T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Debian, SUSE und openSUSE aufgenommen"
},
{
"date": "2025-05-22T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-05-25T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2025-05-26T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2025-05-27T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von HP und Ubuntu aufgenommen"
},
{
"date": "2025-05-29T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von SUSE, Amazon und HP aufgenommen"
},
{
"date": "2025-06-17T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-06-19T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "11"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Dell Computer",
"product": {
"name": "Dell Computer",
"product_id": "T043182",
"product_identification_helper": {
"cpe": "cpe:/o:dell:dell_computer:-"
}
}
},
{
"category": "product_name",
"name": "Dell PowerEdge",
"product": {
"name": "Dell PowerEdge",
"product_id": "T019535",
"product_identification_helper": {
"cpe": "cpe:/h:dell:poweredge:-"
}
}
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Google Cloud Platform",
"product": {
"name": "Google Cloud Platform",
"product_id": "393401",
"product_identification_helper": {
"cpe": "cpe:/a:google:cloud_platform:-"
}
}
}
],
"category": "vendor",
"name": "Google"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "HP Computer",
"product": {
"name": "HP Computer",
"product_id": "T031288",
"product_identification_helper": {
"cpe": "cpe:/h:hp:computer:-"
}
}
},
{
"category": "product_name",
"name": "HP Computer",
"product": {
"name": "HP Computer",
"product_id": "T032784",
"product_identification_helper": {
"cpe": "cpe:/h:hp:computer:-"
}
}
}
],
"category": "product_name",
"name": "Computer"
}
],
"category": "vendor",
"name": "HP"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE ProLiant",
"product": {
"name": "HPE ProLiant",
"product_id": "T027705",
"product_identification_helper": {
"cpe": "cpe:/h:hp:proliant:-"
}
}
},
{
"category": "product_name",
"name": "HPE Synergy",
"product": {
"name": "HPE Synergy",
"product_id": "T019820",
"product_identification_helper": {
"cpe": "cpe:/h:hpe:synergy:-"
}
}
}
],
"category": "vendor",
"name": "HPE"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "CNVi",
"product": {
"name": "Intel Prozessor CNVi",
"product_id": "T043596",
"product_identification_helper": {
"cpe": "cpe:/h:intel:intel_prozessor:cnvi"
}
}
},
{
"category": "product_version",
"name": "Xeon 6 E-cores",
"product": {
"name": "Intel Prozessor Xeon 6 E-cores",
"product_id": "T043597",
"product_identification_helper": {
"cpe": "cpe:/h:intel:intel_prozessor:xeon_6_e-cores"
}
}
},
{
"category": "product_version",
"name": "Slim Bootloader",
"product": {
"name": "Intel Prozessor Slim Bootloader",
"product_id": "T043598",
"product_identification_helper": {
"cpe": "cpe:/h:intel:intel_prozessor:slim_bootloader"
}
}
},
{
"category": "product_name",
"name": "Intel Prozessor",
"product": {
"name": "Intel Prozessor",
"product_id": "T043599",
"product_identification_helper": {
"cpe": "cpe:/h:intel:intel_prozessor:-"
}
}
}
],
"category": "product_name",
"name": "Prozessor"
}
],
"category": "vendor",
"name": "Intel"
},
{
"branches": [
{
"category": "product_name",
"name": "Lenovo Computer",
"product": {
"name": "Lenovo Computer",
"product_id": "T026557",
"product_identification_helper": {
"cpe": "cpe:/h:lenovo:computer:-"
}
}
}
],
"category": "vendor",
"name": "Lenovo"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-20047",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557",
"T043596"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20047"
},
{
"cve": "CVE-2024-48869",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T043597",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2024-48869"
},
{
"cve": "CVE-2025-20004",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T043597",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20004"
},
{
"cve": "CVE-2025-20100",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T043597",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20100"
},
{
"cve": "CVE-2025-20083",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T043598",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20083"
},
{
"cve": "CVE-2025-20054",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20054"
},
{
"cve": "CVE-2025-20103",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20103"
},
{
"cve": "CVE-2024-43420",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2024-43420"
},
{
"cve": "CVE-2024-45332",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2024-45332"
},
{
"cve": "CVE-2025-20623",
"product_status": {
"known_affected": [
"T031288",
"T032784",
"393401",
"74185",
"T019535",
"T043599",
"T019820",
"2951",
"T002207",
"T027705",
"T000126",
"T027843",
"T043182",
"398363",
"T026557"
]
},
"release_date": "2025-05-13T22:00:00.000+00:00",
"title": "CVE-2025-20623"
}
]
}
FKIE_CVE-2024-48869
Vulnerability from fkie_nvd - Published: 2025-05-13 21:16 - Updated: 2025-05-16 14:43
Severity ?
Summary
Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access."
},
{
"lang": "es",
"value": "La restricci\u00f3n inadecuada de las interfaces de software a las caracter\u00edsticas del hardware para algunos procesadores Intel(R) Xeon(R) 6 E-cores cuando se utilizan Intel(R) Trust Domain Extensions (Intel(R) TDX) o Intel(R) Software Guard Extensions (Intel(R) SGX) puede permitir que un usuario privilegiado habilite potencialmente la escalada de privilegios a trav\u00e9s del acceso local."
}
],
"id": "CVE-2024-48869",
"lastModified": "2025-05-16T14:43:56.797",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 4.7,
"source": "secure@intel.com",
"type": "Secondary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "LOCAL",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "secure@intel.com",
"type": "Secondary"
}
]
},
"published": "2025-05-13T21:16:02.227",
"references": [
{
"source": "secure@intel.com",
"url": "https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html"
}
],
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-1256"
}
],
"source": "secure@intel.com",
"type": "Primary"
}
]
}
GHSA-3HVR-6XXW-86VV
Vulnerability from github – Published: 2025-05-13 21:30 – Updated: 2025-05-13 21:30
VLAI?
Details
Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access.
Severity ?
6.1 (Medium)
{
"affected": [],
"aliases": [
"CVE-2024-48869"
],
"database_specific": {
"cwe_ids": [
"CWE-1256"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-05-13T21:16:02Z",
"severity": "MODERATE"
},
"details": "Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable escalation of privilege via local access.",
"id": "GHSA-3hvr-6xxw-86vv",
"modified": "2025-05-13T21:30:55Z",
"published": "2025-05-13T21:30:55Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48869"
},
{
"type": "WEB",
"url": "https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…