Information disclosure in Intel products - CVE-2023-24588
Published: November 22, 2023
Vulnerability identifier: #VU83405
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-24588
CWE-ID: CWE-200
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Intel
Affected software:
Intel Optane Memory H20 with Solid State Storage
Intel Optane SSD 9 Series
Intel Optane SSD DC P4800X Series
Intel Optane SSD DC P4801X Series
Intel Optane Memory H20 with Solid State Storage
Intel Optane SSD 9 Series
Intel Optane SSD DC P4800X Series
Intel Optane SSD DC P4801X Series
Detailed vulnerability description
The vulnerability allows an attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output. An attacker with physical access to the system gain unauthorized access to sensitive information.
How to mitigate CVE-2023-24588
Install updates from vendor's website.