Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-43420

MEDIUM
Published 2025-05-13T21:03:09.384Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-43420. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
5.6
/10
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.000
probability
of exploitation in the wild

There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.051
Higher than 5.1% of all CVEs

Attack Vector Metrics

Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Description

Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

EU Vulnerability Database

Monitored by ENISA for EU cybersecurity

EU Coordination

Not EU Coordinated

Exploitation Status

No Known Exploitation

EUVD ID

View on ENISA

ENISA Analysis

Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.

Affected Products (ENISA)

n/a
intel atom(r) processors

ENISA Scoring

CVSS Score (4.0)

5.7
/10
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS Score

0.020
probability

ENISA References

https://nvd.nist.gov/vuln/detail/CVE-2024-43420
https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html

Data provided by ENISA EU Vulnerability Database. Last updated: May 13, 2025

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-6gp3-r6r7-wq4f

Advisory Details

Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-43420
WEB https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html

Advisory provided by GitHub Security Advisory Database. Published: May 13, 2025, Modified: May 13, 2025

Social Media Intelligence

Real-time discussions and threat intelligence from social platforms

2 posts
Reddit 2 months, 3 weeks ago
Masayoshii

Legion Pro 7i Gen 9 / 16IRX9H, June 25 BIOS N2CN27WW Available for Download **June 25, BIOS N2CN27WW is available for Legion Pro 7i Gen 9 / 16IRX9H**, and **brings Microcode Update revision to 12E** and release notes below: [https://pcsupport.lenovo.com/us/en/products/laptops-and-netbooks/legion-series/legion-pro-7-16irx9h/83de/83de001sus/downloads/ds567127-bios-update-for-windows-10-64-bit-legion-pro-7-16irx9h?category=BIOS%2FUEFI](https://pcsupport.lenovo.com/us/en/products/laptops-and-netbooks/legion-series/legion-pro-7-16irx9h/83de/83de001sus/downloads/ds567127-bios-update-for-windows-10-64-bit-legion-pro-7-16irx9h?category=BIOS%2FUEFI) Note: During upgrade, you'll see an initial progress indicator > …

Also mentions: CVE-2024-45332 CVE-2024-52878 CVE-2024-52880 CVE-2024-24582 CVE-2024-52879 CVE-2024-52877 CVE-2024-7344 CVE-2023-40238
2
3
8.0
View Original
Reddit 3 months ago
Alternative-Wave-185

New Gen8 Bios KWCN50WW with Intel Microcode 0x12e Hi Board, there is a new Bios Update KWCN50WW for the following devices. It also contains Intel Microcode 0x12e as undocumented change. [https://download.lenovo.com/consumer/mobiles/kwcn50ww.exe](https://download.lenovo.com/consumer/mobiles/kwcn50ww.exe) [https://download.lenovo.com/consumer/mobiles/kwcn50ww.txt](https://download.lenovo.com/consumer/mobiles/kwcn50ww.txt) >Legion Pro 5 16IRX8/Lenovo Legion Pro 5 16IRX8/Legion Y9000P IRX8/Legion Pro 7 16IRX8H/Lenovo Legion Pro 7 16IRX8H/Legion Y9000P …

Also mentions: CVE-2024-45332 CVE-2024-52878 CVE-2024-52880 CVE-2024-24582 CVE-2024-52879 CVE-2024-52877 CVE-2024-7344 CVE-2023-40238
8
14
36.0
View Original

References

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html
Published: 2025-05-13T21:03:09.384Z
Last Modified: 2025-05-14T14:01:31.886Z
Copied to clipboard!