CVE-2023-38575

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Mar 14, 2024
Updated: May 4, 2024
CWE ID 1303

Summary

CVE-2023-38575 is a cybersecurity vulnerability affecting certain Intel Processors. This issue involves the non-transparent sharing of return predictor targets between contexts, which could enable an authorized user to potentially disclose information through local access. The vulnerability might allow attackers to gain unintended access to sensitive data, posing a risk to system security and privacy. Intel has not yet provided details about the specific processors impacted or the severity of the issue, but users are advised to install any available patches as soon as they become available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share