CVE-2023-24587

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Nov 14, 2023
Updated: Nov 28, 2023
CWE ID 691

Summary

CVE-2023-24587 is a vulnerability affecting some Intel OptaneTM SSD products. The issue stems from insufficient control flow management in the firmware, which could be exploited by privileged users for denial-of-service attacks via local access. Successful exploitation could potentially disrupt the normal functioning of the affected SSDs. Users are advised to update their firmware as soon as patches become available to mitigate this risk. This vulnerability may pose a significant threat to data centers and other critical infrastructure where these Intel SSDs are deployed.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share