Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to potentiall…
Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
An unauthorized agent can inject errors into a redundant block to deprive the system of redundancy or put the system in a degraded operating mode.
https://cwe.mitre.org/data/definitions/1334.html →Open in CWE collection →The adversary uses disruptive signals or events, or alters the physical environment a device operates in, to cause faulty behavior in electronic devices. This can include electromagnetic pulses, laser pulses, clock glitches, ambient temperature extremes, and more. When performed in a controlled manner on devices performing cryptographic operations, this faulty behavior can be exploited to derive secret key information.
https://capec.mitre.org/data/definitions/624.html →Open in CAPEC collection →Fault injection attacks against mobile devices use disruptive signals or events (e.g. electromagnetic pulses, laser pulses, clock glitches, etc.) to cause faulty behavior. When performed in a controlled manner on devices performing cryptographic operations, this faulty behavior can be exploited to derive secret key information. Although this attack usually requires physical control of the mobile device, it is non-destructive, and the device can be used after the attack without any indication that secret keys were compromised.
https://capec.mitre.org/data/definitions/625.html →Open in CAPEC collection →| Product | Vendor | Status |
|---|---|---|
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| intel-microcode | Tracked | |
| debian_linux | * | Tracked |
| fedora | * | Tracked |
| xeon_bronze_3408u_firmware | * | Tracked |
| xeon_d-1513n_firmware | * | Tracked |
| xeon_d-1518_firmware | * | Tracked |
| xeon_d-1520_firmware | * | Tracked |
| xeon_d-1521_firmware | * | Tracked |
| xeon_d-1523n_firmware | * | Tracked |
| xeon_d-1527_firmware | * | Tracked |