CVE-2023-49618

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 12, 2025

CWE ID 119

Summary

CVE-2023-49618 is a vulnerability affecting certain Intel(R) System Security Report and System Resources Defense firmware. The issue involves improper buffer restrictions, which can allow a privileged user to potentially escalate their privileges through local access. This weakness may grant unauthorized access to sensitive system information or functionality, posing a significant risk to security. Intel is working on a patch to address this issue and users are advised to install it as soon as it becomes available. Until then, it is recommended that privileged access to affected systems be limited to trusted and essential personnel.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tl7hc2
https://www.cve.org/CVERecord?id=CVE-2023-49618
https://nvd.nist.gov/vuln/detail/CVE-2023-49618

Back to Vulnerability Database

CVE-2023-49618

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations