CVE-2023-31360

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Feb 11, 2025

CWE ID 276

Summary

CVE-2023-31360 is a vulnerability affecting the AMD Integrated Management Technology (AIM-T) Manageability Service. The issue lies in the incorrect default permissions within the installation directory, which could be exploited by an attacker to achieve privilege escalation. Successful exploitation of this vulnerability may lead to arbitrary code execution, posing a significant security risk. Users are advised to update their systems with the latest patches to mitigate this threat. AMD has released a security advisory and provides guidance on how to secure affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3RLHXY
https://www.cve.org/CVERecord?id=CVE-2023-31360
https://nvd.nist.gov/vuln/detail/CVE-2023-31360

Back to Vulnerability Database

CVE-2023-31360

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations