VDB
DEBIAN-CVE-2025-21090
DEBIAN-CVE-2025-21090
PUBLISHED
CVSS 4.099999904632568 MEDIUM
Missing reference to active allocated resource for some Intel(R) Xeon(R) processors may allow an authenticated user to potentially enable denial of service via local access.
Risk Scores
CVSS 4.0
4.099999904632568
CVSS:4.0/AV:P/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | intel-microcode | 3.20241112.1, 0, 0.20080131-1 |
| Debian:11 | intel-microcode | 3.20250211.1, 0.20080131-1, 0.20080220-1 |
| Debian:13 | intel-microcode | *, *, * |
| Debian:14 | intel-microcode | *, 3.20240531.1, 2.20140624.1 |
Timeline
- Aug 12, 2025 CVE Published
- Apr 28, 2026 CVE Updated