PT-2023-9799 · Intel+6 · Intel Tdx Module+6

Andrey Markovytch

Published

2023-11-27

Updated

2025-03-26

CVE-2023-45745

CVSS v3.1

8.2

High

Vector

AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) TDX module software versions prior to 1.5.05.46.698

Description The issue is related to improper input validation in the Intel(R) TDX module software, which may allow a privileged user to potentially enable escalation of privilege via local access. This could lead to a potential system compromise.

Recommendations For versions prior to 1.5.05.46.698, upgrade the affected component to mitigate the risk. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2024-8656

ALT-PU-2024-8668

BDU:2024-11262

CVE-2023-45745

MGASA-2024-0207

OESA-2024-1730

OESA-2024-1731

OESA-2024-1732

OESA-2024-1753

OPENSUSE-SU-2024:13974-1

SUSE-SU-2024:1684-1

SUSE-SU-2024:1771-1

SUSE-SU-2025:1032-1

SUSE-SU-2025:20020-1

USN-6797-1

Affected Products

Alt Linux

Astra Linux

Intel Tdx Module

Linuxmint

Red Os

Suse

Ubuntu

PT-2023-9799 · Intel+6 · Intel Tdx Module+6

CVE-2023-45745

Weakness Enumeration

Related Identifiers

Affected Products

References · 96