14Mar
CVE-2023-28389 | microcode keying CSME Installer prior 2328.5.5.0 default permission (intel-sa-00923)
A vulnerability classified as critical was found in microcode keying CSME Installer. Affected by this vulnerability is an unknown functionality. The manipulation leads to incorrect default permissions. This vulnerability is known as CVE-2023-28389. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.