Main Vulnerability Database Vulnerabilities #VU96213

Resource management error in 3rd Generation Intel Xeon Scalable Processors - CVE-2024-25939

Published: August 19, 2024

Vulnerability identifier: #VU96213

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-25939

CWE-ID: CWE-399

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Intel

Affected software:
3rd Generation Intel Xeon Scalable Processors

Detailed vulnerability description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the application. Mirrored regions with different values in 3rd Generation Intel Xeon Scalable Processors may allow a local privileged user to crash the system.

How to mitigate CVE-2024-25939

Install updates from vendor's website.

Sources

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01118.html

Resource management error in 3rd Generation Intel Xeon Scalable Processors - CVE-2024-25939

Detailed vulnerability description

How to mitigate CVE-2024-25939

Sources

Please verify you're human