CVE-2023-22310

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Nov 14, 2023
Updated: Nov 20, 2023
CWE ID 421
CWE ID 362

Summary

CVE-2023-22310 is a vulnerability affecting certain Intel(R) Aptio* V UEFI Firmware Integrator Tools. An authenticated user can exploit a race condition in these tools, potentially causing a denial of service issue via local access. This means that an attacker with legitimate access to the affected system can trigger the vulnerability, leading to service disruption. The precise impact of the vulnerability depends on the specific use case and the targeted UEFI Firmware Integrator Tool. It's recommended that users apply the available patches to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share