PT-2025-21118 · Intel+9 · Intel Core Ultra Processor+9

Published

2025-01-01

·

Updated

2025-11-26

·

CVE-2025-24495

CVSS v4.0

6.8

Medium

VectorAV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Name of the Vulnerable Software and Affected Versions: Intel(R) Core Ultra Processors (affected versions not specified)
Description: The issue is related to the incorrect initialization of resources in the branch prediction unit for some Intel(R) Core Ultra Processors. This may allow an authenticated user to potentially enable information disclosure via local access.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Initialization

Weakness Enumeration

CWE-665CWE-1419

Related Identifiers

ALT-PU-2025-14707
BDU:2025-05665
CESA-2025_10991
CVE-2025-24495
DLA-4170-1
DSA-5924-1
INFBA-2025_9433
MGASA-2025-0160
OESA-2025-1528
OPENSUSE-SU-2025:15093-1
OPENSUSE-SU-2025_01651-1
RHSA-2025:10101
RHSA-2025:10102
RHSA-2025:10103
RHSA-2025:10107
RHSA-2025:10108
RHSA-2025:10109
RHSA-2025:10111
RHSA-2025:10126
RHSA-2025:10162
RHSA-2025:10991
RHSA-2025_10991
SUSE-SU-2025:01650-1
SUSE-SU-2025:01651-1
SUSE-SU-2025:01651-2
SUSE-SU-2025:1567-1
SUSE-SU-2025:20410-1
SUSE-SU-2025:20424-1
SUSE-SU-2025_01650-1
SUSE-SU-2025_01651-1
SUSE-SU-2025_01651-2
SUSE-SU-2025_1567-1
USN-7535-1

Affected Products

Alt Linux
Astra Linux
Centos
Debian
Intel Core Ultra Processor
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu