CVE-2023-4857

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 15, 2024

CWE ID 306

Summary

CVE-2023-4857 is an authentication bypass vulnerability affecting SMM/SMM2 and FPC. This issue enables authenticated users to execute specific IPMI calls, bypassing the authentication process. The outcome of this vulnerability is the exposure of limited system information. This issue poses a potential security risk and should be addressed promptly by affected organizations. It is recommended that users apply the available patches or updates to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/soTjPG
https://www.cve.org/CVERecord?id=CVE-2023-4857
https://nvd.nist.gov/vuln/detail/CVE-2023-4857

Back to Vulnerability Database

CVE-2023-4857

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations