Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIntelCVE-2023-26589
HistoryNov 14, 2023 - 7:15 p.m.

CVE-2023-26589

2023-11-1419:15:20
CWE-416
intel
web.nvd.nist.gov
27
cve-2023-26589
use after free
intel
aptio
uefi
firmware
integrator tools
denial of service
local access

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

5.6

Confidence

High

EPSS

0

Percentile

9.0%

JSON

Use after free in some Intelยฎ Aptio* V UEFI Firmware Integrator Tools may allowed an authenticated user to potentially enable denial of service via local access.

Affected configurations

Nvd
Node
microsoftwindowsMatch-
AND
intelaptio_v_uefi_firmware_integrator_toolsMatch5.27.03.0003
Node
linuxlinux_kernelMatch-
AND
intelaptio_v_uefi_firmware_integrator_toolsMatch5.27.06.0017
VendorProductVersionCPE
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
intelaptio_v_uefi_firmware_integrator_tools5.27.03.0003cpe:2.3:a:intel:aptio_v_uefi_firmware_integrator_tools:5.27.03.0003:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
intelaptio_v_uefi_firmware_integrator_tools5.27.06.0017cpe:2.3:a:intel:aptio_v_uefi_firmware_integrator_tools:5.27.06.0017:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) Aptio* V UEFI Firmware Integrator Tools",
    "versions": [
      {
        "version": "See references",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

vulnrichment 1
cvelist 1
prion 1
nvd 1
intel 1
vulnrichment
vulnrichment
CVE-2023-26589
2023-11-14 19:04:51
cvelist
cvelist
CVE-2023-26589
2023-11-14 19:04:51
prion
prion
Design/Logic Flaw
2023-11-14 19:15:00
nvd
nvd
CVE-2023-26589
2023-11-14 19:15:20
intel
intel
Intelยฎ NUC Software Advisory
2023-11-14 00:00:00

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

5.6

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for CVE-2023-26589
vulnrichment1cvelist1prion1nvd1intel1