CVE-2023-39230

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Nov 14, 2023
Updated: Nov 21, 2023
CWE ID 732
CWE ID 277

Summary

CVE-2023-39230 is a vulnerability found in certain versions of Intel Rapid Storage Technology software (before version 16.8.5.1014.9). This vulnerability could potentially allow an authenticated user to escalate their privileges through local access due to insecure inherited permissions. The affected products include QtrP7o, b8LA0K, b8LA0L, b8LA0O, b8LA0P, b8LA0M, b8LA0N, gAr_H0, gAr_Hz, hwJDL4, b8LA0S, b8LA0T, Yd1WHp, b8LA0Q, hwJDL2, hwJDL3, b8LA0R, and b8LA0W. Remediation for this vulnerability involves updating the Intel Rapid Storage Technology software to version 16.8.5.1014.9 or newer. The potential danger posed by this vulnerability is a potential escalation of privilege within an organization's system and network if exploited by an authenticated user with local access.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-39230 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options