SB2024080116 - Multiple vulnerabilities in Dell APEX Cloud Platform for Red Hat OpenShift and Dell APEX Cloud Platform Foundation Software
Published: August 1, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 10 secuirty vulnerabilities.
1) Protection Mechanism Failure (CVE-ID: CVE-2023-39368)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient implementation of security measures in the bus lock regulator mechanism. A remote attacker can trick the victim to open a specially crafted file and perform a denial of service (DoS) attack.
2) Information disclosure (CVE-ID: CVE-2023-38575)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to non-transparent sharing of return predictor targets between contexts in some Intel Processors. A local user can gain unauthorized access to sensitive information on the system.
3) Security features bypass (CVE-ID: CVE-2023-22655)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a protection mechanism failure in some 3rd and 4th Generation Intel Xeon Processors when using Intel SGX or Intel TDX. A local user can execute arbitrary code with elevated privileges.
4) Improper access control (CVE-ID: CVE-2023-32666)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to improper access restrictions within the on-chip debug and test interface when using Intel SGX or Intel TDX. A local privileged user can bypass implemented security restrictions and escalate privileges on the system.
5) Buffer overflow (CVE-ID: CVE-2024-0162)
The vulnerability allows a local user to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error. A local low privileged attacker could potentially exploit this vulnerability leading to out-of-bound read/writes to SMRAM.
6) Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-ID: CVE-2024-0163)
The vulnerability allows a local user to gain access to gain access to otherwise unauthorized resources.
The vulnerability exists due to TOCTOU race condition. A local low privileged attacker could potentially exploit this vulnerability to gain access to otherwise unauthorized resources.
7) Access of Memory Location After End of Buffer (CVE-ID: CVE-2024-0173)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to improper parameter initialization. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory.
8) Access of Memory Location After End of Buffer (CVE-ID: CVE-2024-0154)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to improper parameter initialization. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory.
9) Untrusted search path (CVE-ID: CVE-2023-29153)
The vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to usage of an untrusted search path. A remote administrator can cause a denial of service condition on the target system.
10) Security features bypass (CVE-ID: CVE-2024-21626)
The vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to an internal file descriptor leak that can cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace or a malicious image to allow a container process to gain access to the host filesystem through runc run. A remote attacker can trick the victim into loading a malicious image to bypass sandbox restrictions and execute arbitrary code on the host OS.
Remediation
Install update from vendor's website.