Improper access control in Intel products - CVE-2023-27879

 

Improper access control in Intel products - CVE-2023-27879

Published: November 22, 2023


Vulnerability identifier: #VU83403
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-27879
CWE-ID: CWE-284
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: Intel
Affected software:
Intel Optane Memory H20 with Solid State Storage
Intel Optane SSD 9 Series
Intel Optane SSD DC P4800X Series
Intel Optane SSD DC P4801X Series

Detailed vulnerability description

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to improper access restrictions. An attacker with physical access to the system can obtain potentially sensitive information.


How to mitigate CVE-2023-27879

Install updates from vendor's website.

Sources