CVE-2023-43490

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 14, 2024
Updated: May 4, 2024
CWE ID 682

Summary

CVE-2023-43490 is a vulnerability affecting some Intel Xeon D Processors with Intel SGX. The issue stems from an incorrect calculation in the microcode keying mechanism. This flaw could potentially enable information disclosure by a privileged user through local access. Intel has released updates to mitigate this vulnerability, and it is recommended that affected systems be promptly patched. The impact of this vulnerability could include sensitive data exposure, making it a significant security concern for organizations and individuals utilizing the affected processors.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share