Lucene search

[email protected]NVD:CVE-2023-27519

HistoryNov 14, 2023 - 7:15 p.m.

CVE-2023-27519

2023-11-1419:15:21

CWE-20

[email protected]

web.nvd.nist.gov

input validation

firmware vulnerability

intel optane ssd

privileged user

escalation of privilege

local access

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper input validation in firmware for some Intel® Optane™ SSD products may allow a privileged user to potentially enable escalation of privilege via local access.

Affected configurations

NVD

Node

inteloptane_memory_h20_with_solid_state_storage_firmwareRange<u4110553-g004

AND

inteloptane_memory_h20_with_solid_state_storageMatch-

Node

inteloptane_ssd_900p_firmwareRange<e2010650

AND

inteloptane_ssd_900pMatch-

Node

inteloptane_ssd_dc_p4800x_firmwareRange<e2010650

AND

inteloptane_ssd_dc_p4800xMatch-

Node

inteloptane_ssd_dc_p4801x_firmwareRange<e2010650

AND

inteloptane_ssd_dc_p4801xMatch-

Node

inteloptane_ssd_905p_firmwareRange<e2010650

AND

inteloptane_ssd_905pMatch-

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2023-27519

cve1 prion1 cvelist1 hp1 intel1