Insufficient Control Flow Management in Intel Optane SSDs
CVE-2023-24587

6.9MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Optane(tm) Ssd Products
Vendor: CVE Published:; 14 November 2023

Summary

A vulnerability has been identified in the firmware of certain Intel Optane SSD products, which allows a privileged user to manipulate control flow management. This issue could lead to a potential denial of service scenario when local access is gained. It is crucial for users to remain informed about this vulnerability and consider appropriate remediation measures.

Affected Version(s)

Intel(R) Optane(TM) SSD products See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Mar 8, 2023