BDU:2024-11667High
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Share link
Anyone with the link can open this vulnerability.
Уязвимость гипервизора SMI transfer monitor (STM) микропрограммного обеспечения процессоров Intel связан с неправильным порядком действий. …
CVSS
7.2
High
EPSS
0.00
p0
Published
2024-01-01
Updated
2024-01-01
Description
Уязвимость гипервизора SMI transfer monitor (STM) микропрограммного обеспечения процессоров Intel связан с неправильным порядком действий. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии
Affected products
Intel corp. 10th generation intel core processor familyIntel corp. 10th generation intel core processor familyIntel corp. 10th generation intel core processor familyIntel corp. 10th generation intel core processor familyIntel corp. 10th generation intel core processor familyIntel corp. 11th generation intel core processor familyIntel corp. 11th generation intel core processor familyIntel corp. 11th generation intel core processor familyIntel corp. 11th generation intel core processor familyIntel corp. 11th generation intel core processor familyIntel corp. 2nd generation intel xeon scalable processorIntel corp. 2nd generation intel xeon scalable processorIntel corp. 2nd generation intel xeon scalable processorIntel corp. 2nd generation intel xeon scalable processorIntel corp. 2nd generation intel xeon scalable processorIntel corp. 3rd gen intel xeon scalable processor familyIntel corp. 3rd gen intel xeon scalable processor familyIntel corp. 3rd gen intel xeon scalable processor familyIntel corp. 3rd gen intel xeon scalable processor familyIntel corp. 3rd gen intel xeon scalable processor family
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Timeline
2024-01-01
Published
2024-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: H
High (H)
Privileges Required
PR: H
High (H)
User Interaction
UI: R
Required (R)
Scope
S: C
Changed (C)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Intel
10th Generation Intel Core Processor Family2nd Generation Intel Xeon Scalable Processor11th Generation Intel Core Processor FamilyIntel Celeron Processor FamilyIntel Pentium Gold SeriesIntel Pentium Gold Processor FamilyIntel Core X-series Processors8th Generation Intel Core ProcessorsIntel Celeron G SeriesIntel Xeon W Processor Family+11
| Product | Vendor | Status |
|---|---|---|
| 10th generation intel core processor family | intel corp. | Tracked |
| 10th generation intel core processor family | intel corp. | Tracked |
| 10th generation intel core processor family | intel corp. | Tracked |
| 10th generation intel core processor family | intel corp. | Tracked |
| 10th generation intel core processor family | intel corp. | Tracked |
| 11th generation intel core processor family | intel corp. | Tracked |
| 11th generation intel core processor family | intel corp. | Tracked |
| 11th generation intel core processor family | intel corp. | Tracked |
| 11th generation intel core processor family | intel corp. | Tracked |
| 11th generation intel core processor family | intel corp. | Tracked |
| 2nd generation intel xeon scalable processor | intel corp. | Tracked |
| 2nd generation intel xeon scalable processor | intel corp. | Tracked |
| 2nd generation intel xeon scalable processor | intel corp. | Tracked |
| 2nd generation intel xeon scalable processor | intel corp. | Tracked |
| 2nd generation intel xeon scalable processor | intel corp. | Tracked |
| 3rd gen intel xeon scalable processor family | intel corp. | Tracked |
| 3rd gen intel xeon scalable processor family | intel corp. | Tracked |
| 3rd gen intel xeon scalable processor family | intel corp. | Tracked |
| 3rd gen intel xeon scalable processor family | intel corp. | Tracked |
| 3rd gen intel xeon scalable processor family | intel corp. | Tracked |
Showing first 20 of 125
Source databases
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Related vulnerabilities