- 56/2024
- High
Intel has released security updates to address several vulnerabilities in multiple Intel products.
The addressed vulnerabilities could allow the attacker to gain elevated privileges, obtain sensitive information, or perform denial-of-service attacks on the affected products.
Samples of the addressed vulnerabilities:
1. Intel DSA Software Privilege Escalation Vulnerability (CVE-2023-39425):
- CVSS: 8.8
- Attack Vector: Local
- Attack Complexity: Low
- Privileges Required: Low
- User Interaction: None
- Consequences: Gain Privileges
2. Intel PCM Software Denial of Service Vulnerability (CVE-2023-34351):
- CVSS: 7.5
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Consequences: Denial of Service
Sample of the affected products:
- Intel DSA Software.
- Intel PCM Software.
- Intel SSU Software.
- Intel Unison Software.
- Intel MPI Library Software.
- Intel SUR for Gameplay Software.
Vulnerabilities
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.