Out-of-bounds Read Vulnerability in Intel E810 Ethernet Controllers and Adapters
CVE-2023-28376

6.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) E810 Ethernet Controllers And Adapters
Vendor: CVE Published:; 14 November 2023

Summary

An out-of-bounds read vulnerability exists in the firmware of Intel E810 Ethernet Controllers and Adapters prior to version 1.7.1. This issue may allow an unauthenticated user to execute denial of service attacks through adjacent access, potentially disrupting network communication and impacting system performance.

Affected Version(s)

Intel(R) E810 Ethernet Controllers and Adapters before version 1.7.1

References

https://www.intel.com/content/www/us/en/security-center/a...

https://security.netapp.com/advisory/ntap-20231221-0007/

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Mar 22, 2023