CVE-2024-27457

LOW

Intel(R) TDX Module <1.5.06 - Info Disclosure

Title source: llm
STIX 2.1

Description

Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before version 1.5.06 may allow a privileged user to potentially enable information disclosure via local access.

References (1)

Scores

CVSS v3 2.5
EPSS 0.0003
EPSS Percentile 10.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-754
Status published
Products (1)
n/a/Intel(R) TDX Module firmware before version 1.5.06
Published Oct 08, 2024
Tracked Since Feb 18, 2026