PT-2024-20174 · Intel+6 · Intel Xeon+7

Published

2024-11-13

Updated

2025-11-26

CVE-2024-23918

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Xeon processor (affected versions not specified)

Description The issue is related to an improper conditions check in some Intel Xeon processor memory controller configurations when using Intel SGX. This may allow a privileged user to potentially enable escalation of privilege via local access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-754CWE-92

Related Identifiers

ALT-PU-2025-14707

BDU:2025-03311

CVE-2024-23918

DLA-4002-1

MGASA-2024-0377

OESA-2025-1587

OESA-2025-1588

OESA-2025-1589

OESA-2025-1590

OPENSUSE-SU-2024:14496-1

OPENSUSE-SU-2024_4053-1

SUSE-SU-2024:3995-1

SUSE-SU-2024:4053-1

SUSE-SU-2025:1032-1

SUSE-SU-2025:20092-1

SUSE-SU-2025:20286-1

USN-7149-1

Affected Products

Alt Linux

Astra Linux

Intel Sgx

Intel Xeon

Linuxmint

Red Os

Suse

Ubuntu

PT-2024-20174 · Intel+6 · Intel Xeon+7

CVE-2024-23918

Weakness Enumeration

Related Identifiers

Affected Products

References · 92