CVE-2024-39283

Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:tdx_module_software:*:*:*:*:*:*:*:*

History

12 Sep 2024, 19:15

Type Values Removed Values Added
First Time Intel
Intel tdx Module Software
CPE cpe:2.3:a:intel:tdx_module_software:*:*:*:*:*:*:*:*
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01010.html - () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01010.html - Vendor Advisory
CWE NVD-CWE-Other
Summary
  • (es) El filtrado incompleto de elementos especiales en el software del módulo Intel(R) TDX anterior a la versión TDX_1.5.01.00.592 puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local.
CVSS v2 : unknown
v3 : 6.0
v2 : unknown
v3 : 7.8

14 Aug 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-14 14:15

Updated : 2024-09-12 19:15


NVD link : CVE-2024-39283

Mitre link : CVE-2024-39283

CVE.ORG link : CVE-2024-39283


JSON object : View

Products Affected

intel

  • tdx_module_software
CWE
NVD-CWE-Other CWE-791

Incomplete Filtering of Special Elements