PT-2024-19093 · Intel · Intel(R) Tdx Seamldr Module
Published
2024-11-13
·
Updated
2024-11-15
·
CVE-2024-21850
CVSS v3.1
6.0
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Intel(R) TDX Seamldr module software versions prior to 1.5.02.00
Description
Sensitive information in a resource is not removed before reuse in some Intel(R) TDX Seamldr module software, which may allow a privileged user to potentially enable escalation of privilege via local access.
Recommendations
For versions prior to 1.5.02.00, update to version 1.5.02.00 or later to resolve the issue. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel(R) Tdx Seamldr Module