CVE-2023-34438

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 11, 2023

Updated: Nov 7, 2023

CWE ID 421

CWE ID 362

Summary

CVE-2023-34438 is a newly discovered vulnerability affecting some Intel(R) NUC BIOS firmware. This issue involves a race condition, which can be exploited by privileged users to potentially escalate their privileges through local access. The race condition exists in the BIOS firmware, making it a low-level vulnerability that could have significant implications for system security if successfully exploited. Intel has not yet released a patch for this vulnerability, leaving affected systems at risk until a fix becomes available. Users are strongly encouraged to monitor for updates from Intel and apply them as soon as possible to mitigate the risk of this escalation of privilege vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database