CVE-2024-28956

CVSS 5.7 MEDIUMEPSS 0.4%CWE-1421

Vexday Risk Score

13Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 5.7EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

13 mai 2025Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Produtos afetados

n/a · Intel(R) Processors

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html https://lists.debian.org/debian-lts-announce/2025/05/msg00021.html https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html http://www.openwall.com/lists/oss-security/2025/05/12/5 http://xenbits.xen.org/xsa/advisory-469.html