Intel Tdx Module vulnerabilities

5 known vulnerabilities affecting intel/tdx_module.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2024-33607MEDIUMCVSS 5.7fixed in 1.5.07.00.7742025-08-12
CVE-2024-33607 [MEDIUM] CWE-125 CVE-2024-33607: Out-of-bounds read in some Intel(R) TDX module software before version TDX_1.5.07.00.774 may allow a Out-of-bounds read in some Intel(R) TDX module software before version TDX_1.5.07.00.774 may allow an authenticated user to potentially enable information disclosure via local access.
nvd
CVE-2024-39283HIGHCVSS 8.5fixed in 1.5.01.00.5922024-08-14
CVE-2024-39283 [HIGH] CWE-791 CVE-2024-39283: Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.0 Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-21801HIGHCVSS 8.3fixed in 1.5.05.46.6982024-08-14
CVE-2024-21801 [HIGH] CWE-691 CVE-2024-21801: Insufficient control flow management in some Intel(R) TDX module software before version 1.5.05.46.6 Insufficient control flow management in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable denial of service via local access.
nvd
CVE-2023-45745HIGHCVSS 8.2fixed in 1.5.05.46.6982024-05-16
CVE-2023-45745 [HIGH] CWE-20 CVE-2023-45745: Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allo Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-47855MEDIUMCVSS 6.7fixed in 1.5.05.46.6982024-05-16
CVE-2023-47855 [MEDIUM] CWE-20 CVE-2023-47855: Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allo Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd