CVE-2023-20515

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Feb 11, 2025

CWE ID 1284

Summary

CVE-2023-20515 is a vulnerability affecting the fTPM driver in the trusted OS. This issue involves improper access control, which can be exploited by privileged attackers. By taking advantage of this flaw, attackers can corrupt system memory, potentially resulting in loss of integrity, confidentiality, or availability. This vulnerability poses a significant risk, particularly in environments where privileged access is common. It is crucial for organizations to apply patches or mitigations promptly to protect against this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tChoPJ
https://www.cve.org/CVERecord?id=CVE-2023-20515
https://nvd.nist.gov/vuln/detail/CVE-2023-20515

Back to Vulnerability Database

CVE-2023-20515

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations