vulnerability
Oracle Linux: CVE-2023-22655: ELSA-2024-9401: microcode_ctl security update (MODERATE)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:M/C:P/I:C/A:N) | Mar 12, 2024 | Nov 21, 2024 | Dec 3, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:M/C:P/I:C/A:N)
Published
Mar 12, 2024
Added
Nov 21, 2024
Modified
Dec 3, 2025
Description
Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.
A vulnerability was found in the Intel Xeon Processor's microcode. This issue may allow a malicious actor to achieve local privilege escalation when using Intel SGX or Intel TDX features.
A vulnerability was found in the Intel Xeon Processor's microcode. This issue may allow a malicious actor to achieve local privilege escalation when using Intel SGX or Intel TDX features.
Solution
oracle-linux-upgrade-microcode-ctl
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.