PT-2024-8889 · Intel+6 · Intel Processors+6

Brent Calhoon

Published

2024-08-13

Updated

2025-03-26

CVE-2023-49141

CVSS v3.1

7.8

High

Vector

AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Intel(R) Processors (affected versions not specified)

Description: The issue is related to improper isolation in the stream cache mechanism of some Intel(R) Processors, which may allow an authenticated user to potentially enable escalation of privilege via local access. This could be exploited by an attacker to gain elevated privileges. The vulnerability is associated with the incorrect isolation of shared resources between trusted and untrusted agents in the processor's microcode.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1189

Related Identifiers

ALT-PU-2024-11724

ALT-PU-2024-12531

BDU:2024-10556

CVE-2023-49141

MGASA-2024-0296

OESA-2024-2140

OPENSUSE-SU-2024:14268-1

OPENSUSE-SU-2024_3095-1

SUSE-SU-2024:2941-1

SUSE-SU-2024:3095-1

SUSE-SU-2025:1032-1

USN-6967-1

Affected Products

Alt Linux

Astra Linux

Intel Processors

Linuxmint

Red Os

Suse

Ubuntu

PT-2024-8889 · Intel+6 · Intel Processors+6

CVE-2023-49141

Weakness Enumeration

Related Identifiers

Affected Products

References · 82