CVE-2023-40540

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Nov 14, 2023

Updated: Nov 22, 2023

CWE ID 1303

Summary

CVE-2023-40540 is a vulnerability affecting some Intel NUC BIOS firmware. It involves non-transparent sharing of microarchitectural resources, which can potentially enable information disclosure for privileged users through local access. This issue may pose a security risk if exploited, making it important for users to update their BIOS to the latest version to mitigate the vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbXWiu
https://www.cve.org/CVERecord?id=CVE-2023-40540
https://nvd.nist.gov/vuln/detail/CVE-2023-40540

Back to Vulnerability Database

CVE-2023-40540

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations