Vulnerability DatabaseCVE-2020-24511

CVE-2020-24511:
Rocky Linux vulnerability analysis and mitigation

Overview

Improper isolation of shared resources in some Intel(R) Processors was identified as CVE-2020-24511, which allows an authenticated user to potentially enable information disclosure via local access. The vulnerability was disclosed in 2020 and affects various Intel processor models (Intel Advisory).

Technical details

The vulnerability has a CVSS score of 5.6 (MEDIUM) with a vector of CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N. This indicates that the vulnerability requires local access, high attack complexity, and low privileges, but could result in high confidentiality impact (NetApp Advisory).

Impact

Successful exploitation of this vulnerability could lead to disclosure of sensitive information through local access. The vulnerability specifically affects certain processor models, with particular impact noted on AFF A400/FAS8300/FAS8700 systems (NetApp Advisory).

Mitigation and workarounds

Intel released firmware updates to mitigate the vulnerability. Various vendors have provided patches, including Debian which released version 3.20210608.2~deb10u1 for the stable distribution (buster). For affected systems, microcode updates are available through vendor-specific channels (Debian Advisory, Intel Advisory).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a Wiz customer? See which CVEs are exploitable in your environment.

Get a CVE Assessment

6.5

Score

Published June 9, 2021

Severity MEDIUM

CNA Score N/A

Affected Technologies

Rocky Linux
Alibaba Cloud Linux (Aliyun Linux)

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 22.3

Exploitation Probability (EPSS) 0.1

Affected packages and libraries

intel-ucode
microcode_ctl

Sources

NVD
Alpine Security Tracker
- Alpine 3.12, 3.13, 3.14, 3.15 Severity MEDIUMHas FixAdded at: Mar 12, 2022
- Alpine 3.16 Severity MEDIUMHas FixAdded at: May 24, 2022
- Alpine 3.17 Severity MEDIUMHas FixAdded at: Nov 23, 2022
- Alpine 3.18 Severity MEDIUMHas FixAdded at: May 10, 2023
- Alpine 3.19 Severity MEDIUMHas FixAdded at: Dec 10, 2023
- Alpine 3.20 Severity MEDIUMHas FixAdded at: May 26, 2024
- Alpine 3.21 Severity MEDIUMHas FixAdded at: Dec 08, 2024
- Alpine 3.22 Severity MEDIUMHas FixAdded at: Jun 01, 2025
- Alpine 3.23 Severity MEDIUMHas FixAdded at: Dec 04, 2025
- Alpine edge Severity MEDIUMHas FixAdded at: Jun 19, 2023
Debian Security Tracker
- Debian 9, 10, 11 Severity MEDIUMHas FixAdded at: Nov 23, 2021
Echo
- Echo Severity MEDIUMHas FixAdded at: Nov 18, 2025
Red Hat Errata
- Red Hat 6 Severity MEDIUMHas FixAdded at: Feb 19, 2025
- Red Hat 7 Severity MEDIUMHas FixAdded at: Nov 23, 2021
- Red Hat 8 Severity MEDIUMHas FixAdded at: Nov 23, 2021
Rocky Linux Product Errata
- Rocky 8 Severity HIGHHas FixAdded at: May 14, 2023
Ubuntu Security Tracker
- Ubuntu 14.04, 16.04 Severity MEDIUMHas FixAdded at: Mar 28, 2022
- Ubuntu 18.04, 20.04, 20.10, 21.04 Severity MEDIUMHas FixAdded at: Nov 23, 2021
- Ubuntu 21.10, 22.04 Severity MEDIUMHas FixAdded at: Nov 01, 2022

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Rocky Linux vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-13020	HIGH	8.8	NixOS	MozillaFirefox-branding-upstream	No	Yes	Nov 11, 2025
CVE-2025-59088	HIGH	8.6	Rocky Linux	python3-kdcproxy	No	Yes	Nov 12, 2025
CVE-2025-13019	HIGH	8.1	NixOS	firefox-x11	No	Yes	Nov 11, 2025
CVE-2025-59089	MEDIUM	5.9	Rocky Linux	idm:DL1::bind-dyndb-ldap	No	Yes	Nov 12, 2025
CVE-2025-40185	N/A	N/A	Linux Kernel	kernel-64k-debug-modules-partner	No	Yes	Nov 12, 2025