CVE-2023-29157
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 14, 2023
Updated: Nov 21, 2023
CWE ID 284
Summary
CVE-2023-29157 is a vulnerability affecting some Intel(R) OFU (Out-of-Band Fabric) software versions prior to 14.1.31. This issue stems from a misconfiguration in access control. An authenticated user can exploit this vulnerability through local access, potentially escalating their privileges beyond intended limits. Successful exploitation could lead to significant security implications within affected systems. Intel urges users to update to the latest software version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Intel Corp.