Vulnerability-Lookup

CVE-2025-31648 (GCVE-0-2025-31648)

Vulnerability from cvelistv5 – Published: 2026-02-10 16:25 – Updated: 2026-02-26 15:04

Summary

Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.

Severity

3.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

CWE

Escalation of Privilege
CWE-229 - Improper Handling of Values

Assigner

intel

References

1 reference

URL	Tags
https://intel.com/content/www/us/en/security-cent…

Impacted products

1 product

Vendor	Product	Version
n/a	Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.	Affected: See references

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-31648",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-02-11T04:56:25.884102Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-02-26T15:04:09.683Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "See references"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "cvssV4_0": {
            "attackComplexity": "HIGH",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 1.8,
            "baseSeverity": "LOW",
            "privilegesRequired": "HIGH",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "LOW",
            "subIntegrityImpact": "LOW",
            "userInteraction": "NONE",
            "vectorString": "CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "LOW",
            "vulnIntegrityImpact": "LOW"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Escalation of Privilege",
              "lang": "en"
            },
            {
              "cweId": "CWE-229",
              "description": "Improper Handling of Values",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-02-10T16:25:36.350Z",
        "orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
        "shortName": "intel"
      },
      "references": [
        {
          "name": "https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html",
          "url": "https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
    "assignerShortName": "intel",
    "cveId": "CVE-2025-31648",
    "datePublished": "2026-02-10T16:25:36.350Z",
    "dateReserved": "2025-04-15T21:16:05.117Z",
    "dateUpdated": "2026-02-26T15:04:09.683Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-31648",
      "date": "2026-05-25",
      "epss": "5e-05",
      "percentile": "0.0027"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-31648\",\"sourceIdentifier\":\"secure@intel.com\",\"published\":\"2026-02-10T17:16:15.550\",\"lastModified\":\"2026-02-10T21:51:48.077\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"secure@intel.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":1.8,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"LOW\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"LOW\",\"subIntegrityImpact\":\"LOW\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"secure@intel.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N\",\"baseScore\":3.9,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":0.8,\"impactScore\":2.7}]},\"weaknesses\":[{\"source\":\"secure@intel.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-229\"}]}],\"references\":[{\"url\":\"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html\",\"source\":\"secure@intel.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"cna\": {\"providerMetadata\": {\"orgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"shortName\": \"intel\", \"dateUpdated\": \"2026-02-10T16:25:36.350Z\"}, \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"Escalation of Privilege\"}, {\"lang\": \"en\", \"description\": \"Improper Handling of Values\", \"cweId\": \"CWE-229\", \"type\": \"CWE\"}]}], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.\", \"versions\": [{\"version\": \"See references\", \"status\": \"affected\"}], \"defaultStatus\": \"unaffected\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.\"}], \"references\": [{\"name\": \"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html\", \"url\": \"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html\"}], \"metrics\": [{\"format\": \"CVSS\", \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}], \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 3.9, \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 1.8, \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"vulnConfidentialityImpact\": \"LOW\", \"vulnIntegrityImpact\": \"LOW\", \"vulnAvailabilityImpact\": \"NONE\", \"subConfidentialityImpact\": \"LOW\", \"subIntegrityImpact\": \"LOW\", \"subAvailabilityImpact\": \"NONE\"}}]}, \"adp\": [{\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-31648\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-11T04:56:25.884102Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-10T17:33:44.378Z\"}, \"title\": \"CISA ADP Vulnrichment\"}]}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-31648\", \"assignerOrgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"intel\", \"dateReserved\": \"2025-04-15T21:16:05.117Z\", \"datePublished\": \"2026-02-10T16:25:36.350Z\", \"dateUpdated\": \"2026-02-11T04:56:25.392Z\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

SUSE-SU-2026:20682-1

Vulnerability from csaf_suse - Published: 2026-03-06 13:29 - Updated: 2026-03-06 13:29

Summary

Security update for ucode-intel

Severity

Important

Notes

Title of the patch: Security update for ucode-intel

Patchnames: SUSE-SLE-Micro-6.1-430

CVE-2024-24853

7.2 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 1 product

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64		—	Vendor Fix

Threats

Impact important

CVE-2025-31648

3.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 1 product

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

12 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1229129	self
https://bugzilla.suse.com/1258046	self
https://www.suse.com/security/cve/CVE-2024-24853/	self
https://www.suse.com/security/cve/CVE-2025-31648/	self
https://www.suse.com/security/cve/CVE-2024-24853	external
https://bugzilla.suse.com/1229129	external
https://www.suse.com/security/cve/CVE-2025-31648	external
https://bugzilla.suse.com/1258046	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for ucode-intel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for ucode-intel fixes the following issues:\n\n- Intel CPU Microcode was updated to the 20260210 release (bsc#1258046):\n\n  - CVE-2024-24853: Updated fix for incorrect behavior order in transition\n    between executive monitor and SMI transfer monitor (STM) in some Intel(R)\n    Processor may allow a privileged user to potentially enable escalation\n    of privilege via local access (bsc#1229129).\n\n  - CVE-2025-31648: Improper handling of values in the\n    microcode flow for some Intel Processor Family may allow\n    an escalation of privilege (bsc#1258046).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Micro-6.1-430",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20682-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:20682-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620682-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:20682-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024736.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229129",
        "url": "https://bugzilla.suse.com/1229129"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1258046",
        "url": "https://bugzilla.suse.com/1258046"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-24853 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-24853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-31648 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-31648/"
      }
    ],
    "title": "Security update for ucode-intel",
    "tracking": {
      "current_release_date": "2026-03-06T13:29:07Z",
      "generator": {
        "date": "2026-03-06T13:29:07Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:20682-1",
      "initial_release_date": "2026-03-06T13:29:07Z",
      "revision_history": [
        {
          "date": "2026-03-06T13:29:07Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ucode-intel-20260210-slfo.1.1_1.1.x86_64",
                "product": {
                  "name": "ucode-intel-20260210-slfo.1.1_1.1.x86_64",
                  "product_id": "ucode-intel-20260210-slfo.1.1_1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Micro 6.1",
                "product": {
                  "name": "SUSE Linux Micro 6.1",
                  "product_id": "SUSE Linux Micro 6.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sl-micro:6.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ucode-intel-20260210-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
        },
        "product_reference": "ucode-intel-20260210-slfo.1.1_1.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-24853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-24853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-24853",
          "url": "https://www.suse.com/security/cve/CVE-2024-24853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229129 for CVE-2024-24853",
          "url": "https://bugzilla.suse.com/1229129"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-03-06T13:29:07Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-24853"
    },
    {
      "cve": "CVE-2025-31648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-31648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-31648",
          "url": "https://www.suse.com/security/cve/CVE-2025-31648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1258046 for CVE-2025-31648",
          "url": "https://bugzilla.suse.com/1258046"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20260210-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-03-06T13:29:07Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-31648"
    }
  ]
}

SUSE-SU-2026:20758-1

Vulnerability from csaf_suse - Published: 2026-03-19 09:31 - Updated: 2026-03-19 09:31

Summary

Security update for ucode-intel

Severity

Moderate

Notes

Title of the patch: Security update for ucode-intel

Description of the patch: This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20260210 release (bsc#1258046): - CVE-2024-24853: Updated fix for incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege via local access (bsc#1229129). - CVE-2025-31648: Improper handling of values in the microcode flow for some Intel Processor Family may allow an escalation of privilege (bsc#1258046). - Intel CPU Microcode was updated to the 20251111 release (bsc#1253319): - Update for functional issues. - switch the supplements to use supplements + kernel to allow moving a installation to Intel hardware (bsc#1249138) - Intel CPU Microcode was updated to the 20241029 release (bsc#1230400): - Update for functional issues.

Patchnames: SUSE-SL-Micro-6.2-415

CVE-2024-24853

7.2 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 1 product

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64		—	Vendor Fix

Threats

Impact important

CVE-2025-31648

3.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 1 product

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

15 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1229129	self
https://bugzilla.suse.com/1230400	self
https://bugzilla.suse.com/1249138	self
https://bugzilla.suse.com/1253319	self
https://bugzilla.suse.com/1258046	self
https://www.suse.com/security/cve/CVE-2024-24853/	self
https://www.suse.com/security/cve/CVE-2025-31648/	self
https://www.suse.com/security/cve/CVE-2024-24853	external
https://bugzilla.suse.com/1229129	external
https://www.suse.com/security/cve/CVE-2025-31648	external
https://bugzilla.suse.com/1258046	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for ucode-intel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for ucode-intel fixes the following issues:\n\n- Intel CPU Microcode was updated to the 20260210 release (bsc#1258046):\n\n  - CVE-2024-24853: Updated fix for incorrect behavior order in transition\n    between executive monitor and SMI transfer monitor (STM) in some Intel(R)\n    Processor may allow a privileged user to potentially enable escalation\n    of privilege via local access (bsc#1229129).\n\n  - CVE-2025-31648: Improper handling of values in the\n    microcode flow for some Intel Processor Family may allow\n    an escalation of privilege (bsc#1258046).\n\n- Intel CPU Microcode was updated to the 20251111 release (bsc#1253319):\n\n  - Update for functional issues.\n\n- switch the supplements to use supplements + kernel to allow\n  moving a installation to Intel hardware (bsc#1249138)\n\n- Intel CPU Microcode was updated to the 20241029 release (bsc#1230400):\n\n  - Update for functional issues.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SL-Micro-6.2-415",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20758-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:20758-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620758-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:20758-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024828.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229129",
        "url": "https://bugzilla.suse.com/1229129"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230400",
        "url": "https://bugzilla.suse.com/1230400"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1249138",
        "url": "https://bugzilla.suse.com/1249138"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1253319",
        "url": "https://bugzilla.suse.com/1253319"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1258046",
        "url": "https://bugzilla.suse.com/1258046"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-24853 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-24853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-31648 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-31648/"
      }
    ],
    "title": "Security update for ucode-intel",
    "tracking": {
      "current_release_date": "2026-03-19T09:31:38Z",
      "generator": {
        "date": "2026-03-19T09:31:38Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:20758-1",
      "initial_release_date": "2026-03-19T09:31:38Z",
      "revision_history": [
        {
          "date": "2026-03-19T09:31:38Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ucode-intel-20260210-160000.1.1.x86_64",
                "product": {
                  "name": "ucode-intel-20260210-160000.1.1.x86_64",
                  "product_id": "ucode-intel-20260210-160000.1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Micro 6.2",
                "product": {
                  "name": "SUSE Linux Micro 6.2",
                  "product_id": "SUSE Linux Micro 6.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:16:16.0:transactional"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ucode-intel-20260210-160000.1.1.x86_64 as component of SUSE Linux Micro 6.2",
          "product_id": "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
        },
        "product_reference": "ucode-intel-20260210-160000.1.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-24853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-24853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-24853",
          "url": "https://www.suse.com/security/cve/CVE-2024-24853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229129 for CVE-2024-24853",
          "url": "https://bugzilla.suse.com/1229129"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-03-19T09:31:38Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-24853"
    },
    {
      "cve": "CVE-2025-31648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-31648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-31648",
          "url": "https://www.suse.com/security/cve/CVE-2025-31648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1258046 for CVE-2025-31648",
          "url": "https://bugzilla.suse.com/1258046"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.2:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-03-19T09:31:38Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-31648"
    }
  ]
}

SUSE-SU-2026:20941-1

Vulnerability from csaf_suse - Published: 2026-03-19 09:31 - Updated: 2026-03-19 09:31

Summary

Security update for ucode-intel

Severity

Moderate

Notes

Title of the patch: Security update for ucode-intel

Patchnames: SUSE-SLES-16.0-415

CVE-2024-24853

7.2 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64		—	Vendor Fix

Threats

Impact important

CVE-2025-31648

3.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

15 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-updates/2026…	self
https://bugzilla.suse.com/1229129	self
https://bugzilla.suse.com/1230400	self
https://bugzilla.suse.com/1249138	self
https://bugzilla.suse.com/1253319	self
https://bugzilla.suse.com/1258046	self
https://www.suse.com/security/cve/CVE-2024-24853/	self
https://www.suse.com/security/cve/CVE-2025-31648/	self
https://www.suse.com/security/cve/CVE-2024-24853	external
https://bugzilla.suse.com/1229129	external
https://www.suse.com/security/cve/CVE-2025-31648	external
https://bugzilla.suse.com/1258046	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for ucode-intel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for ucode-intel fixes the following issues:\n\n- Intel CPU Microcode was updated to the 20260210 release (bsc#1258046):\n\n  - CVE-2024-24853: Updated fix for incorrect behavior order in transition\n    between executive monitor and SMI transfer monitor (STM) in some Intel(R)\n    Processor may allow a privileged user to potentially enable escalation\n    of privilege via local access (bsc#1229129).\n\n  - CVE-2025-31648: Improper handling of values in the\n    microcode flow for some Intel Processor Family may allow\n    an escalation of privilege (bsc#1258046).\n\n- Intel CPU Microcode was updated to the 20251111 release (bsc#1253319):\n\n  - Update for functional issues.\n\n- switch the supplements to use supplements + kernel to allow\n  moving a installation to Intel hardware (bsc#1249138)\n\n- Intel CPU Microcode was updated to the 20241029 release (bsc#1230400):\n\n  - Update for functional issues.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLES-16.0-415",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20941-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:20941-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620941-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:20941-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045211.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229129",
        "url": "https://bugzilla.suse.com/1229129"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230400",
        "url": "https://bugzilla.suse.com/1230400"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1249138",
        "url": "https://bugzilla.suse.com/1249138"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1253319",
        "url": "https://bugzilla.suse.com/1253319"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1258046",
        "url": "https://bugzilla.suse.com/1258046"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-24853 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-24853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-31648 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-31648/"
      }
    ],
    "title": "Security update for ucode-intel",
    "tracking": {
      "current_release_date": "2026-03-19T09:31:38Z",
      "generator": {
        "date": "2026-03-19T09:31:38Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:20941-1",
      "initial_release_date": "2026-03-19T09:31:38Z",
      "revision_history": [
        {
          "date": "2026-03-19T09:31:38Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ucode-intel-20260210-160000.1.1.x86_64",
                "product": {
                  "name": "ucode-intel-20260210-160000.1.1.x86_64",
                  "product_id": "ucode-intel-20260210-160000.1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 16.0",
                "product": {
                  "name": "SUSE Linux Enterprise Server 16.0",
                  "product_id": "SUSE Linux Enterprise Server 16.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:16.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP applications 16.0",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP applications 16.0",
                  "product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ucode-intel-20260210-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
          "product_id": "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64"
        },
        "product_reference": "ucode-intel-20260210-160000.1.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ucode-intel-20260210-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
          "product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
        },
        "product_reference": "ucode-intel-20260210-160000.1.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-24853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-24853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64",
          "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-24853",
          "url": "https://www.suse.com/security/cve/CVE-2024-24853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229129 for CVE-2024-24853",
          "url": "https://bugzilla.suse.com/1229129"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64",
            "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64",
            "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-03-19T09:31:38Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-24853"
    },
    {
      "cve": "CVE-2025-31648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-31648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64",
          "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-31648",
          "url": "https://www.suse.com/security/cve/CVE-2025-31648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1258046 for CVE-2025-31648",
          "url": "https://bugzilla.suse.com/1258046"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64",
            "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Server 16.0:ucode-intel-20260210-160000.1.1.x86_64",
            "SUSE Linux Enterprise Server for SAP applications 16.0:ucode-intel-20260210-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-03-19T09:31:38Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-31648"
    }
  ]
}

WID-SEC-W-2026-0379

Vulnerability from csaf_certbund - Published: 2026-02-10 23:00 - Updated: 2026-03-03 23:00

Summary

Intel Prozessoren: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Der Prozessor ist das zentrale Rechenwerk eines Computers. Intel stellt Chipsätze her, die auf Mainboards zur Ansteuerung der Intel Prozessoren eingesetzt werden.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Intel Prozessor und Intel Chipset ausnutzen, um seine Privilegien zu erhöhen, einen Denial-of-Service-Zustand zu verursachen oder vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme: - BIOS/Firmware - Hardware Appliance - Sonstiges

CVE-2025-22885

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-27560

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-27572

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-27708

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-27940

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-30513

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-31648

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-31944

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-32007

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-32467

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-32735

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-33030

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-35992

Affected products

Known affected 11 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Intel Prozessor Firmware Intel / Prozessor	`cpe:/h:intel:intel_prozessor:firmware`	Firmware
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2
Intel Prozessor NPU Driver Windows<32.0.100.4297 Intel / Prozessor		NPU Driver Windows<32.0.100.4297
Intel Prozessor NPU Driver Linux <1.24.0 Intel / Prozessor		NPU Driver Linux <1.24.0
Intel Prozessor Xeon 6 Intel / Prozessor	`cpe:/h:intel:intel_prozessor:xeon_6`	Xeon 6
Intel Prozessor 5th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:5th_gen_xeon`	5th Gen Xeon
Intel Prozessor 4th Gen Xeon Intel / Prozessor	`cpe:/h:intel:intel_prozessor:4th_gen_xeon`	4th Gen Xeon

CVE-2025-20080

Affected products

Known affected 5 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2

CVE-2025-32008

Affected products

Known affected 5 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Intel Chipset Firmware Intel / Chipset	`cpe:/a:intel:chipset_device_software:firmware`	Firmware
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Dell PowerScale OneFS <13.2.2 Dell / PowerScale OneFS		<13.2.2

References

15 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.intel.com/content/www/us/en/security-…	external
https://www.intel.com/content/www/us/en/security-…	external
https://www.intel.com/content/www/us/en/security-…	external
https://www.intel.com/content/www/us/en/security-…	external
https://www.intel.com/content/www/us/en/security-…	external
https://www.intel.com/content/www/us/en/security-…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.dell.com/support/kbdoc/000434554/dsa-…	external
https://ubuntu.com/security/notices/USN-8068-1	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Prozessor ist das zentrale Rechenwerk eines Computers.\r\nIntel stellt Chips\u00e4tze her, die auf Mainboards zur Ansteuerung der Intel Prozessoren eingesetzt werden.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Intel Prozessor und Intel Chipset ausnutzen, um seine Privilegien zu erh\u00f6hen, einen Denial-of-Service-Zustand zu verursachen oder vertrauliche Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- BIOS/Firmware\n- Hardware Appliance\n- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-0379 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0379.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-0379 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0379"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory INTEL-SA-01396 vom 2026-02-10",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory INTEL-SA-01401 vom 2026-02-10",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01401.html"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory INTEL-SA-01397 vom 2026-02-10",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01397.html"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory INTEL-SA-01315 vom 2026-02-10",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01315.html"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory INTEL-SA-01314 vom 2026-02-10",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01314.html"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory INTEL-SA-01403 vom 2026-02-10",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01403.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:10229-1 vom 2026-02-20",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3JSKXREHQWF4EYVGHKFVC7CV7OK3AKTH/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0670-1 vom 2026-02-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024440.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0668-1 vom 2026-02-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024442.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0669-1 vom 2026-02-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024441.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20522-1 vom 2026-02-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024500.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-100 vom 2026-03-03",
        "url": "https://www.dell.com/support/kbdoc/000434554/dsa-2026-100-security-update-f"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8068-1 vom 2026-03-03",
        "url": "https://ubuntu.com/security/notices/USN-8068-1"
      }
    ],
    "source_lang": "en-US",
    "title": "Intel Prozessoren: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-03-03T23:00:00.000+00:00",
      "generator": {
        "date": "2026-03-04T11:19:05.753+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2026-0379",
      "initial_release_date": "2026-02-10T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-02-10T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-02-22T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2026-02-26T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-01T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-02T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2026-03-03T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c13.2.2",
                "product": {
                  "name": "Dell PowerScale OneFS \u003c13.2.2",
                  "product_id": "T051335"
                }
              },
              {
                "category": "product_version",
                "name": "13.2.2",
                "product": {
                  "name": "Dell PowerScale OneFS 13.2.2",
                  "product_id": "T051335-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:powerscale_onefs:13.2.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "PowerScale OneFS"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Firmware",
                "product": {
                  "name": "Intel Chipset Firmware",
                  "product_id": "T050768",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:intel:chipset_device_software:firmware"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Chipset"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Firmware",
                "product": {
                  "name": "Intel Prozessor Firmware",
                  "product_id": "T050763",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:intel:intel_prozessor:firmware"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "NPU Driver Linux \u003c1.24.0",
                "product": {
                  "name": "Intel Prozessor NPU Driver Linux \u003c1.24.0",
                  "product_id": "T050775"
                }
              },
              {
                "category": "product_version",
                "name": "NPU Driver Linux 1.24.0",
                "product": {
                  "name": "Intel Prozessor NPU Driver Linux 1.24.0",
                  "product_id": "T050775-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:intel:intel_prozessor:npu_driver_linux__1.24.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "NPU Driver Windows\u003c32.0.100.4297",
                "product": {
                  "name": "Intel Prozessor NPU Driver Windows\u003c32.0.100.4297",
                  "product_id": "T050776"
                }
              },
              {
                "category": "product_version",
                "name": "NPU Driver Windows32.0.100.4297",
                "product": {
                  "name": "Intel Prozessor NPU Driver Windows32.0.100.4297",
                  "product_id": "T050776-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:intel:intel_prozessor:npu_driver_windows_32.0.100.4297"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Xeon 6",
                "product": {
                  "name": "Intel Prozessor Xeon 6",
                  "product_id": "T050781",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:intel:intel_prozessor:xeon_6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4th Gen Xeon",
                "product": {
                  "name": "Intel Prozessor 4th Gen Xeon",
                  "product_id": "T050782",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:intel:intel_prozessor:4th_gen_xeon"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5th Gen Xeon",
                "product": {
                  "name": "Intel Prozessor 5th Gen Xeon",
                  "product_id": "T050783",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:intel:intel_prozessor:5th_gen_xeon"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Prozessor"
          }
        ],
        "category": "vendor",
        "name": "Intel"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-22885",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-22885"
    },
    {
      "cve": "CVE-2025-27560",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-27560"
    },
    {
      "cve": "CVE-2025-27572",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-27572"
    },
    {
      "cve": "CVE-2025-27708",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-27708"
    },
    {
      "cve": "CVE-2025-27940",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-27940"
    },
    {
      "cve": "CVE-2025-30513",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-30513"
    },
    {
      "cve": "CVE-2025-31648",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-31648"
    },
    {
      "cve": "CVE-2025-31944",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-31944"
    },
    {
      "cve": "CVE-2025-32007",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-32007"
    },
    {
      "cve": "CVE-2025-32467",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-32467"
    },
    {
      "cve": "CVE-2025-32735",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-32735"
    },
    {
      "cve": "CVE-2025-33030",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-33030"
    },
    {
      "cve": "CVE-2025-35992",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T050763",
          "T051335",
          "T050776",
          "T050775",
          "T050781",
          "T050783",
          "T050782"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-35992"
    },
    {
      "cve": "CVE-2025-20080",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T051335"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-20080"
    },
    {
      "cve": "CVE-2025-32008",
      "product_status": {
        "known_affected": [
          "T002207",
          "T000126",
          "T050768",
          "T027843",
          "T051335"
        ]
      },
      "release_date": "2026-02-10T23:00:00.000+00:00",
      "title": "CVE-2025-32008"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-31648 (GCVE-0-2025-31648)

SUSE-SU-2026:20682-1

SUSE-SU-2026:20758-1

SUSE-SU-2026:20941-1

WID-SEC-W-2026-0379

Tags

Sightings

Nomenclature