Main Vulnerability Database Vulnerabilities #VU109409

#VU109409 Improper restriction of software interfaces to hardware features in Intel Xeon 6 processor with E-cores - CVE-2024-48869

Published: May 19, 2025

Vulnerability identifier: #VU109409

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-48869

CWE-ID: CWE-1256

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Intel Xeon 6 processor with E-cores

Software vendor:
Intel

Description

The vulnerability allows a local administrator to escalate privileges on the system.

The vulnerability exists due to improper restriction of software interfaces to hardware features when using Intel TDX or SGX, which leads to security restrictions bypass and privilege escalation.

Remediation

Install updates from vendor's website.

External links

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01268.html

#VU109409 Improper restriction of software interfaces to hardware features in Intel Xeon 6 processor with E-cores - CVE-2024-48869

Description

Remediation

External links

Please verify you're human