Detections
Analytics

CVE-2024-27457

low

Description

Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before version 1.5.06 may allow a privileged user to potentially enable information disclosure via local access.

References

https://www.securityweek.com/new-counterseveillance-and-tdxdown-attacks-target-amd-and-intel-tees/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01099.html

Details

Source: Mitre, NVD

Published: 2024-10-08

Updated: 2024-10-10

Risk Information

CVSS v2

Base Score: 0.8

Vector: CVSS2#AV:L/AC:H/Au:M/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 2.5

Vector: CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N

Severity: Low

CVSS v4

Base Score: 1.8

Vector: CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Severity: Low