CVE-2024-21801

CWE-6913 documents3 sources
Severity
8.3HIGH
EPSS
0.1%
top 80.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel TDX Module
Timeline
PublishedAug 14

Description

Insufficient control flow management in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable denial of service via local access.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:H/SI:N/SA:N

Affected Packages2 packages

CVEListV5intel(r)_tdx_module_softwarebefore version 1.5.05.46.698
NVDintel/tdx_module< 1.5.05.46.698

🔴Vulnerability Details

2
CVEList
CVE-2024-21801: Insufficient control flow management in some Intel(R) TDX module software before version 12024-08-14
GHSA
GHSA-vr6p-52vm-764x: Insufficient control flow management in some Intel(R) TDX module software before version 12024-08-14
CVE-2024-21801 (HIGH CVSS 8.3) | Insufficient control flow managemen | cvebase.io