Lucene search

[email protected]NVD:CVE-2023-41092

HistoryMay 16, 2024 - 9:15 p.m.

CVE-2023-41092

2024-05-1621:15:54

CWE-252

[email protected]

web.nvd.nist.gov

sdm firmware

intel stratix 10

intel agilex 7 fpgas

denial of service

adjacent access

authenticated user

7.6 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

Unchecked return value in SDM firmware for Intel® Stratix 10 and Intel® Agilex 7 FPGAs before version 23.3 may allow an authenticated user to potentially enable denial of service via adjacent access.

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01007.html

7.6 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

Related for NVD:CVE-2023-41092

cve1 cvelist1