CVE-2023-27306

CVE Database · CVE-2023-27306

CVE-2023-27306

· MEDIUMModified

CVSS v3.1

6.5

EPSS

0.21%

Published

Nov 14, 2023

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an authenticated user to potentially enable denial of service via local access.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-665CWE-665

Affected Products (10)

intel · optane_memory_h20_with_solid_state_storage_firmware (up to u4110553-g004)vulnerable

intel · optane_memory_h20_with_solid_state_storage

intel · optane_ssd_900p_firmware (up to e2010650)vulnerable

intel · optane_ssd_900p

intel · optane_ssd_dc_p4800x_firmware (up to e2010650)vulnerable

intel · optane_ssd_dc_p4800x

intel · optane_ssd_dc_p4801x_firmware (up to e2010650)vulnerable

intel · optane_ssd_dc_p4801x

intel · optane_ssd_905p_firmware (up to e2010650)vulnerable

intel · optane_ssd_905p

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs