Potential Escalation of Privilege Vulnerability in Intel UEFI Firmware

CVE-2023-22351

6.1MEDIUM

Key Information

Vendor: Intel
Status: Uefi Firmware For Some Intel(r) Processors
Vendor: CVE Published:; 16 September 2024

Summary

Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Affected Version(s)

UEFI firmware for some Intel(R) Processors = See references

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
Sep 16, 2024
Vulnerability Reserved.
Feb 17, 2023

Collectors

NVD DatabaseMitre Database