#VU87457 Information disclosure in Intel products - CVE-2023-28746
Published: March 12, 2024
Vulnerability identifier: #VU87457
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-28746
CWE-ID: CWE-200
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Intel Atom Processor E3900 Series
Intel Atom Processor C Series
Intel Pentium Processor Silver Series
Intel Celeron Processor J Series
Intel Celeron Processor N Series
Intel Atom Processors
Intel Atom Processor P5900
Intel Atom Processor C5000
Intel Atom Processor P5300
Intel Atom Processor P5700
12th Generation Intel Core Processors
Intel Pentium Gold Processor Series
Intel Celeron Processors
13th Generation Intel Core Processors
14th Generation Intel Core Processors
Intel Core Processor N series
Intel Processor N-series
Intel Atom Processor X Series
Intel Processor U-series
Intel Atom Processor E3900 Series
Intel Atom Processor C Series
Intel Pentium Processor Silver Series
Intel Celeron Processor J Series
Intel Celeron Processor N Series
Intel Atom Processors
Intel Atom Processor P5900
Intel Atom Processor C5000
Intel Atom Processor P5300
Intel Atom Processor P5700
12th Generation Intel Core Processors
Intel Pentium Gold Processor Series
Intel Celeron Processors
13th Generation Intel Core Processors
14th Generation Intel Core Processors
Intel Core Processor N series
Intel Processor N-series
Intel Atom Processor X Series
Intel Processor U-series
Software vendor:
Intel
Intel
Description
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to information exposure through microarchitectural state after transient execution from some register files for some Intel Atom Processors. A local user can gain access to sensitive information.
Remediation
Install updates from vendor's website.