Race condition in Intel products - CVE-2023-32282
Published: March 13, 2024
Vulnerability identifier: #VU87489
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-32282
CWE-ID: CWE-362
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
12th Generation Intel Core Processors
Intel Pentium Gold Processor Series
Intel Celeron Processors
11th Generation Intel Core Processors
10th Generation Intel Core Processors
Intel Core i7-11700T
Intel Core i7-11700
Intel Core i5-11400T
Intel Core i5-11400
Intel Core i5-11500T
Intel Core i5-11500
Intel Celeron J6413
Intel Celeron N6211
Intel Pentium J6425
Intel Pentium N6415
Intel Atom x6211E
Intel Atom x6413E
Intel Atom x6425E
Intel Atom x6212RE
Intel Atom x6414RE
Intel Atom x6425RE
Intel Atom x6427FE
Intel Atom x6200FE
12th Generation Intel Core Processors
Intel Pentium Gold Processor Series
Intel Celeron Processors
11th Generation Intel Core Processors
10th Generation Intel Core Processors
Intel Core i7-11700T
Intel Core i7-11700
Intel Core i5-11400T
Intel Core i5-11400
Intel Core i5-11500T
Intel Core i5-11500
Intel Celeron J6413
Intel Celeron N6211
Intel Pentium J6425
Intel Pentium N6415
Intel Atom x6211E
Intel Atom x6413E
Intel Atom x6425E
Intel Atom x6212RE
Intel Atom x6414RE
Intel Atom x6425RE
Intel Atom x6427FE
Intel Atom x6200FE
Software vendor:
Intel
Intel
Description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a race condition in BIOS firmware. A local privileged user can exploit the race and escalate privileges on the system.
Remediation
Install updates from vendor's website.