CVE-2023-22655

Advisory lineage Upstream: 0 Downstream: 13

Downstream

ALPINE-CVE-2023-22655 DEBIAN-CVE-2023-22655 DLA-3808-1 MGASA-2024-0103 OPENSUSE-SU-2024:13769-1 RHEA-2024:7620

Deferred

Published: 14 Mar 2024, 16:45

Last modified:13 Feb 2025, 16:44

Vulnerability Summary

Overall Risk (default)

low

24/100

CVSS Score

6.1 MEDIUM

v3.1 (cve.org)

EPSS Score

0.04% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

14 Mar 2024, 16:45

Published

Vulnerability first disclosed

13 Feb 2025, 16:44

Last Modified

Vulnerability information updated

Description

Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.

CVSS Metrics

v3.1•MEDIUM•Score: 6.1CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N

EPSS Trends

Current EPSS score: 0.04%• Percentile: 14%

Techniques & Countermeasures

CWE-693•Protection Mechanism Failure
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.