CVE-2023-48366

Summary

CVE-2023-48366 is a recently disclosed vulnerability affecting some Intel System Security Report and System Resources Defense firmware. This issue involves a race condition, which could enable a privileged user to potentially disclose sensitive information through local access, without authorization. The race condition exists due to a timing flaw in the firmware's implementation, making it potentially exploitable. Successful exploitation could lead to the disclosure of confidential system information. Intel has released a security update to address this vulnerability, and system administrators are urged to apply the patch as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.