CVE-2023-31273

CVE Database · CVE-2023-31273

CVE-2023-31273

· CRITICALModified

CVSS v3.1

10.0

EPSS

0.73%

Published

Nov 14, 2023

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Protection mechanism failure in some Intel DCM software before version 5.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Weaknesses (CWE)

CWE-693CWE-269

Affected Products (1)

intel · data_center_manager (up to 5.2)vulnerable

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00902.html

PatchVendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00902.html

PatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs