CVE-2024-24980

Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Weakness

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

Affected Software

Name	Vendor	Start Version	End Version
Intel-microcode	Ubuntu	devel	*
Intel-microcode	Ubuntu	esm-infra-legacy/trusty	*
Intel-microcode	Ubuntu	esm-infra/bionic	*
Intel-microcode	Ubuntu	esm-infra/xenial	*
Intel-microcode	Ubuntu	focal	*
Intel-microcode	Ubuntu	jammy	*
Intel-microcode	Ubuntu	noble	*
Intel-microcode	Ubuntu	trusty/esm	*
Intel-microcode	Ubuntu	upstream	*

https://cwe.mitre.org/data/definitions/1.html
https://cwe.mitre.org/data/definitions/107.html
https://cwe.mitre.org/data/definitions/127.html
https://cwe.mitre.org/data/definitions/17.html
https://cwe.mitre.org/data/definitions/20.html
https://cwe.mitre.org/data/definitions/22.html
https://cwe.mitre.org/data/definitions/237.html
https://cwe.mitre.org/data/definitions/36.html
https://cwe.mitre.org/data/definitions/477.html
https://cwe.mitre.org/data/definitions/480.html
https://cwe.mitre.org/data/definitions/51.html
https://cwe.mitre.org/data/definitions/57.html
https://cwe.mitre.org/data/definitions/59.html
https://cwe.mitre.org/data/definitions/65.html
https://cwe.mitre.org/data/definitions/668.html
https://cwe.mitre.org/data/definitions/74.html
https://cwe.mitre.org/data/definitions/87.html

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01100.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-24980
CWE	https://cwe.mitre.org/data/definitions/693.html

Protection Mechanism Failure

Weakness

Affected Software

Related Attack Patterns

References