Potential Denial of Service Vulnerability in Intel Firmware
CVE-2023-38655

6.8MEDIUM

Key Information:

Vendor: Intel(R)
Status: Intel(r) Amt And Intel(r) Standard Manageability
Vendor: CVE Published:; 14 August 2024

What is CVE-2023-38655?

The vulnerability identified stems from improper buffer restrictions within the firmware of Intel's Active Management Technology (AMT) and Intel Standard Manageability. This flaw allows a privileged user to exploit the system, potentially leading to a denial of service condition through network access. Organizations utilizing these technologies should assess their exposure to this weakness and apply necessary mitigations as outlined by Intel's security advisory.

Affected Version(s)

Intel(R) AMT and Intel(R) Standard Manageability See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2024
Vulnerability Reserved
Aug 4, 2023