Andariel Threat Group Launches Financial Attacks Against American Companies – Active IOCs
October 3, 2024Chinese CeranaKeeper Uses Data Exfiltration to Target Southeast Asia – Active IOCs
October 3, 2024Andariel Threat Group Launches Financial Attacks Against American Companies – Active IOCs
October 3, 2024Chinese CeranaKeeper Uses Data Exfiltration to Target Southeast Asia – Active IOCs
October 3, 2024Severity
High
Analysis Summary
CVE-2024-23599 CVSS:7.9
Multiple Intel Processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by race condition in Seamless Firmware Updates, By sending a specially crafted request, an attacker could exploit this vulnerability to escalate privileges.
CVE-2024-21829 CVSS:7.5
Multiple Intel Processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper input validation in UEFI firmware, By sending a specially crafted request, an attacker could exploit this vulnerability to escalate privileges.
CVE-2024-21781 CVSS:7.2
Multiple Intel Processors could allow a local authenticated attacker to obtain sensitive information, caused by improper input validation in UEFI firmware. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service.
Impact
- Privilege Escalation
- Information Disclosure
Indicators of Compromise
CVE
- CVE-2024-23599
- CVE-2024-21829
- CVE-2024-21781
Affected Vendors
Affected Products
- Intel Xeon Scalable Processor Intel 2nd Generation Intel Xeon Scalable Processors
- Intel 3rd Generation Intel Xeon Scalable Processor Family
- Intel Processors
- Intel Intel Xeon Processor D Family
- Intel Intel Xeon Scalable Processors
Remediation
Refer to INTEL Security Advisory for patch, upgrade or suggested workaround information.