CVE-2024-36293
CVE-2024-36293
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.8EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected products
n/a · Intel(R) Processors with Intel(R) SGXReferences
https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01213.htmlhttps://lists.debian.org/debian-lts-announce/2025/03/msg00021.htmlhttps://www.dell.com/support/kbdoc/en-us/000283897/dsa-2025-041-security-update-for-dell-poweredge-server-for-intel-2025-security-advisories-2025-1-ipu