GCVE - cpe:2.3:o:intel:microcode:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:intel:microcode:*:*:*:*:*:*:*:*

part: o version: * update: *

Vendor	Intel (`929cab12-ac81-57b7-8a87-14c6f331cefb`)
Product	Microcode (`5f481162-536b-537b-b293-60dfe7e3d3e1`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/intel/intel-linux-processor-microcode-data-files`	purl2cpe	2026-06-01 10:14:03.408331

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-23908`	vulnerable	2026-06-08 05:56:04.683585	Details available MEDIUM (6) Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access. Published: 2023-08-11T02:37:07.578Z Updated: 2025-02-13T16:44:11.220Z Open on db.gcve.eu Reference links http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00836.html https://www.debian.org/security/2023/dsa-5474 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/ https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-40982`	vulnerable	2026-06-08 05:48:28.546231	Details available MEDIUM (6.5) Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Published: 2023-08-11T02:37:05.423Z Updated: 2025-02-13T16:33:03.126Z Open on db.gcve.eu Reference links http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00828.html https://downfall.page https://aws.amazon.com/security/security-bulletins/AWS-2023-007/ https://access.redhat.com/solutions/7027704 https://xenbits.xen.org/xsa/advisory-435.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-24512`	vulnerable	2026-06-08 05:22:34.234333	Details available Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Published: 2021-06-09T18:53:59.000Z Updated: 2024-08-04T15:12:09.097Z Open on db.gcve.eu Reference links https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html https://security.netapp.com/advisory/ntap-20210611-0005/ https://www.debian.org/security/2021/dsa-4934 https://lists.debian.org/debian-lts-announce/2021/07/msg00022.html https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-24511`	vulnerable	2026-06-08 05:22:34.232098	Details available Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Published: 2021-06-09T18:53:53.000Z Updated: 2024-08-04T15:12:09.012Z Open on db.gcve.eu Reference links https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html https://security.netapp.com/advisory/ntap-20210611-0005/ https://www.debian.org/security/2021/dsa-4934 https://lists.debian.org/debian-lts-announce/2021/07/msg00022.html https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.