CVE-2023-23908 | Severity.io

Description

Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access.

Related CPE's

intel

microcode

Vulnerable

intel

xeon_d-1513n

intel

xeon_d-1518

intel

xeon_d-1520

intel

xeon_d-1521

intel

xeon_d-1523n

intel

xeon_d-1527

intel

xeon_d-1528

intel

xeon_d-1529

intel

xeon_d-1531

intel

xeon_d-1533n

intel

xeon_d-1537

intel

xeon_d-1539

intel

xeon_d-1540

intel

xeon_d-1541

intel

xeon_d-1543n

intel

xeon_d-1548

intel

xeon_d-1553n

intel

xeon_d-1557

intel

xeon_d-1559

intel

xeon_d-1567

intel

xeon_d-1571

intel

xeon_d-1577

intel

xeon_d-1602

intel

xeon_d-1622

intel

xeon_d-1623n

intel

xeon_d-1627

intel

xeon_d-1633n

intel

xeon_d-1637

intel

xeon_d-1649n

intel

xeon_d-1653n

intel

xeon_d-1702

intel

xeon_d-1712tr

intel

xeon_d-1713nt

intel

xeon_d-1713nte

intel

xeon_d-1714

intel

xeon_d-1715ter

intel

xeon_d-1718t

intel

xeon_d-1722ne

intel

xeon_d-1726

intel

xeon_d-1732te

intel

xeon_d-1733nt

intel

xeon_d-1734nt

intel

xeon_d-1735tr

intel

xeon_d-1736

intel

xeon_d-1736nt

intel

xeon_d-1739

intel

xeon_d-1746ter

intel

xeon_d-1747nte

intel

xeon_d-1748te

intel

xeon_d-1749nt

intel

xeon_d-2123it

intel

xeon_d-2141i

intel

xeon_d-2142it

intel

xeon_d-2143it

intel

xeon_d-2145nt

intel

xeon_d-2146nt

intel

xeon_d-2161i

intel

xeon_d-2163it

intel

xeon_d-2166nt

intel

xeon_d-2173it

intel

xeon_d-2177nt

intel

xeon_d-2183it

intel

xeon_d-2187nt

intel

xeon_d-2712t

intel

xeon_d-2733nt

intel

xeon_d-2738

intel

xeon_d-2745nx

intel

xeon_d-2752nte

intel

xeon_d-2752ter

intel

xeon_d-2753nt

intel

xeon_d-2757nx

intel

xeon_d-2766nt

intel

xeon_d-2775te

intel

xeon_d-2776nt

intel

xeon_d-2777nx

intel

xeon_d-2779

intel

xeon_d-2786nte

intel

xeon_d-2795nt

intel

xeon_d-2796nt

intel

xeon_d-2796te

intel

xeon_d-2798nt

intel

xeon_d-2798nx

intel

xeon_d-2799

intel

xeon_gold_5315y

intel

xeon_gold_5317

intel

xeon_gold_5318h

intel

xeon_gold_5318n

intel

xeon_gold_5318s

intel

xeon_gold_5318y

intel

xeon_gold_5320

intel

xeon_gold_5320h

intel

xeon_gold_5320t

intel

xeon_gold_6312u

intel

xeon_gold_6314u

intel

xeon_gold_6326

intel

xeon_gold_6328h

intel

xeon_gold_6328hl

intel

xeon_gold_6330

intel

xeon_gold_6330h

intel

xeon_gold_6330n

intel

xeon_gold_6334

intel

xeon_gold_6336y

intel

xeon_gold_6338

intel

xeon_gold_6338n

intel

xeon_gold_6338t

intel

xeon_gold_6342

intel

xeon_gold_6346

intel

xeon_gold_6348

intel

xeon_gold_6348h

intel

xeon_gold_6354

intel

xeon_platinum_8351n

intel

xeon_platinum_8352m

intel

xeon_platinum_8352s

intel

xeon_platinum_8352v

intel

xeon_platinum_8352y

intel

xeon_platinum_8353h

intel

xeon_platinum_8354h

intel

xeon_platinum_8356h

intel

xeon_platinum_8358

intel

xeon_platinum_8358p

intel

xeon_platinum_8360h

intel

xeon_platinum_8360hl

intel

xeon_platinum_8360y

intel

xeon_platinum_8362

intel

xeon_platinum_8368

intel

xeon_platinum_8368q

intel

xeon_platinum_8376h

intel

xeon_platinum_8376hl

intel

xeon_platinum_8380

intel

xeon_platinum_8380h

intel

xeon_platinum_8380hl

intel

xeon_silver_4309y

intel

xeon_silver_4310

intel

xeon_silver_4310t

intel

xeon_silver_4314

intel

xeon_silver_4316

debian

debian_linux

fedoraproject

fedora

intel

xeon_d-2745nx_firmware

Vulnerable

intel

xeon_d-2757nx_firmware

Vulnerable

intel

xeon_d-2777nx_firmware

Vulnerable

intel

xeon_d-2798nx_firmware

Vulnerable

intel

xeon_d-1702_firmware

Vulnerable

intel

xeon_d-1712tr_firmware

Vulnerable

intel

xeon_d-1713nt_firmware

Vulnerable

intel

xeon_d-1713nte_firmware

Vulnerable

intel

xeon_d-1714_firmware

Vulnerable

intel

xeon_d-1715ter_firmware

Vulnerable

intel

xeon_d-1718t_firmware

Vulnerable

intel

xeon_d-1722ne_firmware

Vulnerable

intel

xeon_d-1726_firmware

Vulnerable

intel

xeon_d-1732te_firmware

Vulnerable

intel

xeon_d-1733nt_firmware

Vulnerable

intel

xeon_d-1734nt_firmware

Vulnerable

intel

xeon_d-1735tr_firmware

Vulnerable

intel

xeon_d-1736_firmware

Vulnerable

intel

xeon_d-1736nt_firmware

Vulnerable

intel

xeon_d-1739_firmware

Vulnerable

intel

xeon_d-1746ter_firmware

Vulnerable

intel

xeon_d-1747nte_firmware

Vulnerable

intel

xeon_d-1748te_firmware

Vulnerable

intel

xeon_d-1749nt_firmware

Vulnerable

intel

xeon_d-2712t_firmware

Vulnerable

intel

xeon_d-2733nt_firmware

Vulnerable

intel

xeon_d-2738_firmware

Vulnerable

intel

xeon_d-2752nte_firmware

Vulnerable

intel

xeon_d-2752ter_firmware

Vulnerable

intel

xeon_d-2753nt_firmware

Vulnerable

intel

xeon_d-2766nt_firmware

Vulnerable

intel

xeon_d-2775te_firmware

Vulnerable

intel

xeon_d-2776nt_firmware

Vulnerable

intel

xeon_d-2779_firmware

Vulnerable

intel

xeon_d-2786nte_firmware

Vulnerable

intel

xeon_d-2795nt_firmware

Vulnerable

intel

xeon_d-2796nt_firmware

Vulnerable

intel

xeon_d-2796te_firmware

Vulnerable

intel

xeon_d-2798nt_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

xeon_d-1623n_firmware

Vulnerable

intel

xeon_d-1627_firmware

Vulnerable

intel

xeon_d-1633n_firmware

Vulnerable

intel

xeon_d-1637_firmware

Vulnerable

intel

xeon_d-1649n_firmware

Vulnerable

intel

xeon_d-1653n_firmware

Vulnerable

intel

xeon_d-2123it_firmware

Vulnerable

intel

xeon_d-2141i_firmware

Vulnerable

intel

xeon_d-2142it_firmware

Vulnerable

intel

xeon_d-2143it_firmware

Vulnerable

intel

xeon_d-2145nt_firmware

Vulnerable

intel

xeon_d-2146nt_firmware

Vulnerable

intel

xeon_d-2161i_firmware

Vulnerable

intel

xeon_d-2163it_firmware

Vulnerable

intel

xeon_d-2166nt_firmware

Vulnerable

intel

xeon_d-2173it_firmware

Vulnerable

intel

xeon_d-2177nt_firmware

Vulnerable

intel

xeon_d-2183it_firmware

Vulnerable

intel

xeon_d-2187nt_firmware

Vulnerable

intel

xeon_d-1513n_firmware

Vulnerable

intel

xeon_d-1523n_firmware

Vulnerable

intel

xeon_d-1533n_firmware

Vulnerable

intel

xeon_d-1543n_firmware

Vulnerable

intel

xeon_d-1553n_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

xeon_gold_5315y_firmware

Vulnerable

intel

xeon_gold_5317_firmware

Vulnerable

intel

xeon_gold_5318n_firmware

Vulnerable

intel

xeon_gold_5318s_firmware

Vulnerable

intel

xeon_gold_5318y_firmware

Vulnerable

intel

xeon_gold_5320_firmware

Vulnerable

intel

xeon_gold_5320t_firmware

Vulnerable

intel

xeon_gold_6312u_firmware

Vulnerable

intel

xeon_gold_6314u_firmware

Vulnerable

intel

xeon_gold_6326_firmware

Vulnerable

intel

xeon_gold_6330_firmware

Vulnerable

intel

xeon_gold_6330n_firmware

Vulnerable

intel

xeon_gold_6334_firmware

Vulnerable

intel

xeon_gold_6336y_firmware

Vulnerable

intel

xeon_gold_6338_firmware

Vulnerable

intel

xeon_gold_6338n_firmware

Vulnerable

intel

xeon_gold_6338t_firmware

Vulnerable

intel

xeon_gold_6342_firmware

Vulnerable

intel

xeon_gold_6346_firmware

Vulnerable

intel

xeon_gold_6348_firmware

Vulnerable

intel

xeon_gold_6354_firmware

Vulnerable

intel

xeon_platinum_8351n_firmware

Vulnerable

intel

xeon_platinum_8352m_firmware

Vulnerable

intel

xeon_platinum_8352s_firmware

Vulnerable

intel

xeon_platinum_8352v_firmware

Vulnerable

intel

xeon_platinum_8352y_firmware

Vulnerable

intel

xeon_platinum_8358_firmware

Vulnerable

intel

xeon_platinum_8358p_firmware

Vulnerable

intel

xeon_platinum_8360y_firmware

Vulnerable

intel

xeon_platinum_8362_firmware

Vulnerable

intel

xeon_platinum_8368_firmware

Vulnerable

intel

xeon_platinum_8368q_firmware

Vulnerable

intel

xeon_platinum_8380_firmware

Vulnerable

intel

xeon_silver_4309y_firmware

Vulnerable

intel

xeon_silver_4310_firmware

Vulnerable

intel

xeon_silver_4310t_firmware

Vulnerable

intel

xeon_silver_4314_firmware

Vulnerable

intel

xeon_silver_4316_firmware

Vulnerable

intel

xeon_gold_6330h_firmware

Vulnerable

intel

xeon_platinum_8356h_firmware

Vulnerable

intel

xeon_platinum_8360h_firmware

Vulnerable

intel

xeon_platinum_8360hl_firmware

Vulnerable

intel

xeon_gold_5318h_firmware

Vulnerable

intel

xeon_gold_5320h_firmware

Vulnerable

intel

xeon_gold_6328h_firmware

Vulnerable

intel

xeon_gold_6328hl_firmware

Vulnerable

intel

xeon_gold_6348h_firmware

Vulnerable

intel

xeon_platinum_8353h_firmware

Vulnerable

intel

xeon_platinum_8354h_firmware

Vulnerable

intel

xeon_platinum_8376h_firmware

Vulnerable

intel

xeon_platinum_8376hl_firmware

Vulnerable

intel

xeon_platinum_8380h_firmware

Vulnerable

intel

xeon_platinum_8380hl_firmware

Vulnerable

References

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00836.html

Vendor Advisory

https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/

Mailing ListThird Party Advisory

https://security.netapp.com/advisory/ntap-20230824-0003/

https://www.debian.org/security/2023/dsa-5474

Third Party Advisory

Weaknesses

[email protected]

Primary

NVD-CWE-noinfo

[email protected]

Secondary

CWE-284

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

4.4 · Medium

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-08-11T03:15:18.510

11 months ago

Last modified

2023-11-07T04:08:04.803

8 months ago