CVE-2023-45745

HIGH8.2EPSS 0.07%

Published: 5/16/2024Modified: 4/28/2026

Description

Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.

Affected packages (2)

Alpine/intel-ucodefrom 0, < 20240813-r0
Debian/intel-microcodefrom 0, < 3.20240514.1~deb11u1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.2	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2023-45745
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2023-45745