Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-27517

Improper access control in some Intel(R) Optane(TM) PMem software before versions 01.00.00.3547, 02.00.00.3915, 03.00.00.0483 may allow an athenticated user to potentially enable escalation of privilege via local access.

Published

2024-02-14T14:15:47.313

Last Modified

2025-02-20T15:10:10.427

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.6 (MEDIUM)

Weaknesses

Type: Secondary
CWE-284
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intel	optane_persistent_memory_firmware	< 01.00.00.3547	Yes
Hardware	intel	nma1xxd128gpsu4	-	No
Hardware	intel	nma1xxd128gpsuf	-	No
Hardware	intel	nma1xxd256gpsu4	-	No
Hardware	intel	nma1xxd256gpsuf	-	No
Hardware	intel	nma1xxd512gpsu4	-	No
Hardware	intel	nma1xxd512gpsuf	-	No
Operating System	intel	optane_persistent_memory_firmware	< 02.00.00.3915	Yes
Hardware	intel	nmb1xxd128gpsu4	-	No
Hardware	intel	nmb1xxd128gpsuf	-	No
Hardware	intel	nmb1xxd256gpsu4	-	No
Hardware	intel	nmb1xxd256gpsuf	-	No
Hardware	intel	nmb1xxd512gpsu4	-	No
Hardware	intel	nmb1xxd512gpsuf	-	No
Operating System	intel	optane_persistent_memory_firmware	< 03.00.00.0483	Yes
Hardware	intel	nmc2xxd128gpsu4	-	No
Hardware	intel	nmc2xxd256gpsu4	-	No
Hardware	intel	nmc2xxd512gpsu4	-	No

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00948.html Vendor Advisory ([email protected])
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00948.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)