CVE-2024-39283

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 14, 2024
Updated: Sep 12, 2024
CWE ID 791

Summary

CVE-2024-39283 is a vulnerability affecting Intel(R) TDX module software versions before TDX_1.5.01.00.592. An authenticated user can exploit incomplete filtering of special elements in the software, potentially enabling privilege escalation through local access. This issue may allow unauthorized escalation of user privileges, posing a security risk. Intel has released a patch to address this vulnerability, and users are strongly encouraged to update their software to the latest version.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share