Intel Processor Vulnerability: CVE-2023-23583 (Intel-SA-00950) - 2023.4 IPU Out-of-Band (OOB) - Intel® Processor Advisory - Reptar

Intel have advised there is a new vulnerability affecting their processors. It looks like there are quite a few processors affected:

CVEID: CVE-2023-23583
Description: Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access.
CVSS Base Score: 8.8 High
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00950.html

I expect they will try and mitigate via a firmware or BIOS update.

Additional info:

https://blogs.vmware.com/security/2023/11/cve-2023-23583.html
https://thehackernews.com/2023/11/reptar-new-intel-cpu-vulnerability.html

Page 1 / 1

Wow! More intel vulnerabilities. Thanks for sharing this Dips. Need to inform my VMware team about this.

Also co-incides with an AMD vulnerability. Interesting share, thank you!

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded