Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-22327

Out-of-bounds write in firmware for some Intel(R) FPGA products before version 2.8.1 may allow a privileged user to potentially enable information disclosure via local access.

Published

2023-11-14T19:15:17.207

Last Modified

2024-11-21T07:44:32.240

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.0 (MEDIUM)

Weaknesses

Type: Secondary
CWE-787
Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intel	agilex_7_fpga_f-series_006_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_006	-	No
Operating System	intel	agilex_7_fpga_f-series_008_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_008	-	No
Operating System	intel	agilex_7_fpga_f-series_012_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_012	-	No
Operating System	intel	agilex_7_fpga_f-series_014_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_014	-	No
Operating System	intel	agilex_7_fpga_f-series_019_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_019	-	No
Operating System	intel	agilex_7_fpga_f-series_022_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_022	-	No
Operating System	intel	agilex_7_fpga_f-series_023_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_023	-	No
Operating System	intel	agilex_7_fpga_f-series_027_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_f-series_027	-	No
Operating System	intel	agilex_7_fpga_i-series_019_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_019	-	No
Operating System	intel	agilex_7_fpga_i-series_022_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_022	-	No
Operating System	intel	agilex_7_fpga_i-series_023_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_023	-	No
Operating System	intel	agilex_7_fpga_i-series_027_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_027	-	No
Operating System	intel	agilex_7_fpga_i-series_035_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_035	-	No
Operating System	intel	agilex_7_fpga_i-series_040_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_040	-	No
Operating System	intel	agilex_7_fpga_i-series_041_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_i-series_041	-	No
Operating System	intel	agilex_7_fpga_m-series_039_firmware	< 2.8.1	Yes
Hardware	intel	agilex_7_fpga_m-series_039	-	No
Operating System	intel	stratix_10_dx_1100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_dx_1100_fpga	-	No
Operating System	intel	stratix_10_dx_2100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_dx_2100_fpga	-	No
Operating System	intel	stratix_10_dx_2800_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_dx_2800_fpga	-	No
Operating System	intel	stratix_10_gx_10m_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_10m_fpga	-	No
Operating System	intel	stratix_10_gx_1100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_1100_fpga	-	No
Operating System	intel	stratix_10_gx_1650_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_1650_fpga	-	No
Operating System	intel	stratix_10_gx_1660_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_1660_fpga	-	No
Operating System	intel	stratix_10_gx_2100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_2100_fpga	-	No
Operating System	intel	stratix_10_gx_2110_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_2110_fpga	-	No
Operating System	intel	stratix_10_gx_2500_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_2500_fpga	-	No
Operating System	intel	stratix_10_gx_2800_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_2800_fpga	-	No
Operating System	intel	stratix_10_gx_400_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_400_fpga	-	No
Operating System	intel	stratix_10_gx_650_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_650_fpga	-	No
Operating System	intel	stratix_10_gx_850_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_gx_850_fpga	-	No
Operating System	intel	stratix_10_mx_1650_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_mx_1650_fpga	-	No
Operating System	intel	stratix_10_mx_2100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_mx_2100_fpga	-	No
Operating System	intel	stratix_10_nx_2100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_nx_2100_fpga	-	No
Operating System	intel	stratix_10_sx_1100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_1100_fpga	-	No
Operating System	intel	stratix_10_sx_1650_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_1650_fpga	-	No
Operating System	intel	stratix_10_sx_2100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_2100_fpga	-	No
Operating System	intel	stratix_10_sx_2500_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_2500_fpga	-	No
Operating System	intel	stratix_10_sx_2800_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_2800_fpga	-	No
Operating System	intel	stratix_10_sx_400_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_400_fpga	-	No
Operating System	intel	stratix_10_sx_650_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_650_fpga	-	No
Operating System	intel	stratix_10_sx_850_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_sx_850_fpga	-	No
Operating System	intel	stratix_10_tx_1100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_1100_fpga	-	No
Operating System	intel	stratix_10_tx_1650_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_1650_fpga	-	No
Operating System	intel	stratix_10_tx_2100_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_2100_fpga	-	No
Operating System	intel	stratix_10_tx_2500_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_2500_fpga	-	No
Operating System	intel	stratix_10_tx_2800_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_2800_fpga	-	No
Operating System	intel	stratix_10_tx_400_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_400_fpga	-	No
Operating System	intel	stratix_10_tx_850_fpga_firmware	< 2.8.1	Yes
Hardware	intel	stratix_10_tx_850_fpga	-	No

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00957.html Patch, Vendor Advisory ([email protected])
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00957.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)