PT-2023-9799 · Intel+6 · Intel Tdx Module+6

Andrey Markovytch

Publicado

2023-11-27

Atualizado

2025-03-26

CVE-2023-45745

CVSS v3.1

8.2

Alta

Vetor

AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) TDX module software versions prior to 1.5.05.46.698

Description The issue is related to improper input validation in the Intel(R) TDX module software, which may allow a privileged user to potentially enable escalation of privilege via local access. This could lead to a potential system compromise.

Recommendations For versions prior to 1.5.05.46.698, upgrade the affected component to mitigate the risk. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

ALT-PU-2024-8656

ALT-PU-2024-8668

BDU:2024-11262

CVE-2023-45745

MGASA-2024-0207

OESA-2024-1730

OESA-2024-1731

OESA-2024-1732

OESA-2024-1753

OPENSUSE-SU-2024:13974-1

SUSE-SU-2024:1684-1

SUSE-SU-2024:1771-1

SUSE-SU-2025:1032-1

SUSE-SU-2025:20020-1

USN-6797-1

Produtos afetados

Alt Linux

Astra Linux

Intel Tdx Module

Linuxmint

Red Os

Suse

Ubuntu

PT-2023-9799 · Intel+6 · Intel Tdx Module+6

CVE-2023-45745

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 96