Details of VAR-202505-2931

ID

VAR-202505-2931

CVE

CVE-2024-43420

TITLE

Intel Atom Processors Information Disclosure Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-21313

DESCRIPTION

Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access. Intel Atom Processors are a family of low-power processors designed for edge computing and networking applications. They are designed for devices that prioritize battery life and compact size over raw processing performance. Intel Atom Processors contain an information disclosure vulnerability. An attacker can exploit this vulnerability to cause local information disclosure

Trust: 1.44

sources: NVD: CVE-2024-43420 // CNVD: CNVD-2025-21313

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-21313

AFFECTED PRODUCTS

vendor:

intel

model:

atom processors

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2025-21313

CVSS

SEVERITY

CVSSV2

CVSSV3

secure@intel.com:	CVE-2024-43420
value:	MEDIUM
Trust: 1.0
CNVD:	CNVD-2025-21313
value:	LOW
Trust: 0.6

CNVD:	CNVD-2025-21313
severity:	LOW
baseScore:	3.8
vectorString:	AV:L/AC:H/AU:S/C:C/I:N/A:N
accessVector:	LOCAL
accessComplexity:	HIGH
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

secure@intel.com:	CVE-2024-43420
baseSeverity:	MEDIUM
baseScore:	5.6
vectorString:	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.1
impactScore:	4.0
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-21313 // NVD: CVE-2024-43420

PATCH

title:

Patch for Intel Atom Processors Information Disclosure Vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/732311

Trust: 0.6

sources: CNVD: CNVD-2025-21313

EXTERNAL IDS

db:	NVD	id:	CVE-2024-43420	Trust: 1.6
db:	CNVD	id:	CNVD-2025-21313	Trust: 0.6

sources: CNVD: CNVD-2025-21313 // NVD: CVE-2024-43420

REFERENCES

url:	https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2024-43420	Trust: 0.6

sources: CNVD: CNVD-2025-21313 // NVD: CVE-2024-43420

SOURCES

db:	CNVD	id:	CNVD-2025-21313
db:	NVD	id:	CVE-2024-43420

LAST UPDATE DATE

2025-09-18T23:14:25.792000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-21313	date:	2025-09-16T00:00:00
db:	NVD	id:	CVE-2024-43420	date:	2025-05-16T14:43:56.797

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-21313	date:	2025-09-16T00:00:00
db:	NVD	id:	CVE-2024-43420	date:	2025-05-13T21:16:01.103