CVE-2022-21833

Name of the Vulnerable Software and Affected Versions Intel processors based on Sunny Cove microarchitecture, including Ice Lake Xeon-SP, Ice Lake D, Gemini Lake, Ice Lake U, Y, and Rocket Lake

Description An elevation-of-privilege issue allows attackers to affect the system. The problem, known as AEPIC Leak, affects the Advanced Programmable Interrupt Controller (APIC) and can be used by attackers to steal confidential information. This issue is related to a defect in the chip architecture that leads to the disclosure of confidential data without using any side channel. The vulnerability affects systems using Software Guard Extensions (SGX) technology.

Recommendations For Intel processors based on Sunny Cove microarchitecture, including Ice Lake Xeon-SP, Ice Lake D, Gemini Lake, Ice Lake U, Y, and Rocket Lake, follow Intel's security guidelines regarding the AEPIC Leak. As a temporary workaround, consider restricting access to the APIC MMIO to minimize the risk of exploitation.