"Reptar: New Intel CPU Vulnerability Impacts Multi-Tenant Virtualized Environments"

Intel has addressed a high severity flaw called Reptar that affects its desktop, mobile, and server CPUs. The vulnerability, tracked as CVE-2023-23583 with a CVSS score of 8.8, can enable privilege escalation, information disclosure, and/or Denial-of-Service (DoS) via local access. According to Google Cloud, the successful exploitation of the vulnerability could also allow a bypass of the CPU's security boundaries. It is caused by how redundant prefixes are interpreted by the processor. When an attacker abuses this vulnerability in a multi-tenant virtualized environment, the exploit on a guest machine causes the host machine to crash, resulting in a DoS for other guest machines running on the same host, according to Google Cloud's Phil Venables. This article continues to discuss the Reptar Intel CPU vulnerability.

THN reports "Reptar: New Intel CPU Vulnerability Impacts Multi-Tenant Virtualized Environments"

Submitted by grigby1