Alpaquita Linux
Security Advisory

CVE-2022-33196

Published: August 31, 2023Last modified: August 31, 2023

Description

Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software Guard Extensions which may allow a privileged user to potentially enable escalation of privilege via local access.

Severity score breakdown

ParameterValue
Base score6.7
Attack VectorLOCAL
Attack complexityLOW
Privileges requiredHIGH
User interactionNONE
ScopeUNCHANGED
ConfidentialityHIGH
Integrity impactHIGH
Availability impactHIGH
VectorCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSintel-ucodeNot affected (20230808-r0)
Streamintel-ucodeNot affected (20230808-r0)

References

ON THIS PAGE