Skip to main content

CWE-1303

Non-Transparent Sharing of Microarchitectural Resources

2 CVEs Avg CVSS 5.0 MITRE
0
CRITICAL
0
HIGH
2
MEDIUM
0
LOW
1
POC
0
KEV

Monthly

CVE-2023-40540 MEDIUM PATCH This Month

Non-Transparent Sharing of Microarchitectural Resources in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Nuc 11 Pro Kit Nuc11Tnkv50Z Firmware Nuc 11 Pro Kit Nuc11Tnhv70L Firmware Nuc 11 Pro Kit Nuc11Tnhv50L Firmware +53
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-1998 MEDIUM POC PATCH This Month

The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. Rated medium severity (CVSS 5.6). Public exploit code available.

Code Injection Linux Linux Kernel Debian Linux
NVD GitHub Exploit-DB
CVSS 3.1
5.6
EPSS
1.4%
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

Non-Transparent Sharing of Microarchitectural Resources in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Nuc 11 Pro Kit Nuc11Tnkv50Z Firmware +55
NVD
EPSS 1% CVSS 5.6
MEDIUM POC PATCH This Month

The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. Rated medium severity (CVSS 5.6). Public exploit code available.

Code Injection Linux Linux Kernel +1
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy