CVE-2023-32280

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Feb 14, 2024

CWE ID 522

Summary

CVE-2023-32280 is a vulnerability affecting some versions of Intel Server Product OpenBMC firmware, specifically before egs-1.05. The issue arises from insufficient protection of credentials, enabling an unauthenticated user to perform information disclosure through network access. This vulnerability could potentially expose sensitive data, posing a risk to the security of Intel servers. Users are encouraged to update their OpenBMC firmware to the latest version to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ugpEXE
https://www.cve.org/CVERecord?id=CVE-2023-32280
https://nvd.nist.gov/vuln/detail/CVE-2023-32280

Back to Vulnerability Database

CVE-2023-32280

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations