CVE-2023-32666

CVSS 7.2 HIGHEPSS 0.2%CWE-1191

In short

Intel's 4th generation Xeon processors have a security flaw in their debug interface that allows a privileged user on the system to gain even higher privileges. This matters because it can give attackers full control of sensitive security features like SGX and TDX.

Technical detail

The on-chip debug and test interface lacks proper access control in 4th Gen Intel Xeon processors when SGX or TDX is enabled, allowing a privileged local user to escalate privileges. Attack vector is local; requires existing elevated privileges. Impact is privilege escalation potentially compromising hardware-based security boundaries.

Summary generated and translated by AI from the official description.

On-chip debug and test interface with improper access control in some 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

Affected products

n/a · 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://security.netapp.com/advisory/ntap-20240405-0010/https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00986.html