Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

Vulnerability IntelligenceCVE-2024-37020

CVE-2024-37020

MEDIUM4.9

Sequence of processor instructions leads to unexpected behavior in the Intel(R) DSA V1

Published Feb 12, 2025

Modified 4 months ago

Details

Sequence of processor instructions leads to unexpected behavior in the Intel(R) DSA V1.0 for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

References

WEB

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01194.html

WEB

https://lists.debian.org/debian-lts-announce/2025/03/msg00021.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2024-37020

CVSS Analysis

CVSS v4.0

4.9

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Attack Requirements

NoneAT:N

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Vulnerable System

Vuln. Confidentiality

NoneVC:N

Vuln. Integrity

NoneVI:N

Vuln. Availability

LowVA:L

Subsequent System

Subseq. Confidentiality

NoneSC:N

Subseq. Integrity

NoneSI:N

Subseq. Availability

NoneSA:N

4.9/CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Weakness Type (CWE)

Other

CWE-1281

Ecosystems

Timeline

PublishedFeb 12, 2025

ModifiedNov 3, 2025

CVE-2024-37020 | Mondoo Vulnerability Intelligence