Zurück zur CVE-Übersicht
CVE-2023-28746
MEDIUM(6.5)CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Risk Signal Score16/100 — NIEDRIG
- CVSS 6.5 — Mittel
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
6.5
Technische Schwere
Beschreibung
Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Referenzen
- http://www.openwall.com/lists/oss-security/2024/03/12/13
- https://lists.debian.org/debian-lts-announce/2024/05/msg00003.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00898....
- http://www.openwall.com/lists/oss-security/2024/03/12/13
- http://xenbits.xen.org/xsa/advisory-452.html
- https://lists.debian.org/debian-lts-announce/2024/05/msg00003.html