CVE-2023-5078
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Nov 8, 2023
Updated: Nov 16, 2023
CWE ID 208
CWE ID 203
Summary
CVE-2023-5078 is a newly identified vulnerability that affects certain ThinkPad BIOS systems. This issue permits an attacker with elevated privileges, either physically or locally, to manipulate BIOS firmware. The impact of this vulnerability could lead to unauthorized modifications, potentially compromising system security. It is crucial for affected organizations to apply the available security patches promptly to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Red Hat Enterprise Linux
- Red Hat Update Infrastructure
- Red Hat Ansible Automation Platform
Affected Vendors
- Red Hat
- Python Cryptography Project