Intel TDX Modules Information Disclosure Vulnerability

A vulnerability allowing the exposure of sensitive information has been identified in some Intel Trust Domain Extensions (TDX) modules within Ring 0: Hypervisor. This issue arises from the transient execution of data, which could be exploited by an authorized adversary with privileged user access. The attack, characterized by high complexity, may lead to unauthorized data exposure. The vulnerability requires no user interaction and could potentially be exploited through local access, provided the attacker possesses special internal knowledge. The vulnerability significantly impacts the confidentiality of the affected system, with potential repercussions for system confidentiality, integrity, and availability.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure, allowing an adversary to access sensitive data that should be protected.

Remediation

Users of Intel Xeon Processors are advised to update to the latest version provided by their system manufacturer that addresses this vulnerability.