CVE-2023-24588

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Nov 14, 2023

Updated: Nov 28, 2023

CWE ID 200

Summary

CVE-2023-24588 is a vulnerability affecting some Intel OptaneTM SSD products. The issue involves the exposure of sensitive information through the firmware, making it accessible to unauthorized actors who gain physical access to the device. This vulnerability could potentially enable information disclosure without requiring authentication. Intel has not yet released a patch for this issue, so it is crucial for organizations and individuals using the affected SSDs to secure them physically until a solution is available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Intel Corp.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tZ967-
https://www.cve.org/CVERecord?id=CVE-2023-24588
https://nvd.nist.gov/vuln/detail/CVE-2023-24588

Back to Vulnerability Database

CVE-2023-24588

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations