CVE-2023-34853

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 22, 2023

Updated: Aug 29, 2023

CWE ID 787

Summary

CVE-2023-34853 is a buffer overflow vulnerability affecting Supermicro motherboard X12DPG-QR 1.4b. An attacker who gains local access can exploit this flaw by manipulating the SmcSecurityEraseSetupVar variable, leading to unintended code execution and potential control hijacking. This vulnerability poses a significant risk to system integrity and demands immediate mitigation efforts. Users are advised to apply the available patch or upgrade their motherboard to a secure version to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzabq7
https://www.cve.org/CVERecord?id=CVE-2023-34853
https://nvd.nist.gov/vuln/detail/CVE-2023-34853

Back to Vulnerability Database

CVE-2023-34853

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations