#VU103962 Race condition in Intel products - CVE-2023-48366
Published: February 14, 2025
Vulnerability identifier: #VU103962
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-48366
CWE-ID: CWE-362
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Intel System Security Report and System Resource Defense (PPAM)
11th Generation Intel Core Processors
12th Generation Intel Core Processors
Intel Pentium Gold Processor Series
Intel Celeron Processors
10th Generation Intel Core Processors
13th Generation Intel Core Processors
13th Generation Intel Core i7 processors
Intel System Security Report and System Resource Defense (PPAM)
11th Generation Intel Core Processors
12th Generation Intel Core Processors
Intel Pentium Gold Processor Series
Intel Celeron Processors
10th Generation Intel Core Processors
13th Generation Intel Core Processors
13th Generation Intel Core i7 processors
Software vendor:
Intel
Intel
Description
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to a race condition. A local administrator can exploit the race and gain unauthorized access to sensitive information on the system.
Remediation
Install updates from vendor's website.