CVE-2023-31189

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-31189
Improper authentication in some Intel(R) Server Product OpenBMC firmware before version egs-1.09 may allow an authenticated user to enable escalation of privilege via local access.

5.2 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.0 / Impact : 2.7

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

References
Link Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00922.html Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00922.html Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:intel:openbmc:*:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:xeon_bronze_3408u:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5403n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5411n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5412u:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5415\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5416s:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5418n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5418y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5420\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5423n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5433n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6403n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6414u:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6416h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6418h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6421n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6423n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6426y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6428n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6430:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6433n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6433ne:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6434:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6434h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6438m:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6438n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6438y\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6442y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6443n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6444y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6448h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6448y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6454s:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6458q:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8444h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8450h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8452y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8454h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8458p:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8460h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8460y\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8461v:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8462y\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8468:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8468h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8468v:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8470:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8470n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8471n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8480\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8490h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_silver_4410t:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_silver_4410y:-:*:*:*:*:*:*:*
History

14 Jan 2026, 18:29

Type Values Removed Values Added
CPE cpe:2.3:h:intel:xeon_gold_6438y\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6416h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6434:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6443n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6433n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8480\+:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:openbmc:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8444h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5416s:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6448h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6414u:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6454s:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6430:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8450h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8460y\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5415\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6426y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6448y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5411n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8468:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8458p:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8462y\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8470n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6433ne:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6458q:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8468h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_silver_4410y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5433n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6438m:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6438n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8452y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5418n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_bronze_3408u:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8460h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5418y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5420\+:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8461v:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5423n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8468v:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6418h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8471n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8490h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5412u:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6421n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6423n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8454h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6434h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6428n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_platinum_8470:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_5403n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6403n:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6442y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_gold_6444y:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:xeon_silver_4410t:-:*:*:*:*:*:*:*
First Time Intel xeon Gold 6434
Intel xeon Platinum 8480\+
Intel xeon Gold 5403n
Intel xeon Platinum 8490h
Intel xeon Gold 5418y
Intel xeon Gold 6438y\+
Intel xeon Gold 6418h
Intel xeon Platinum 8471n
Intel xeon Platinum 8462y\+
Intel xeon Platinum 8468v
Intel xeon Gold 5411n
Intel xeon Gold 5423n
Intel xeon Platinum 8470n
Intel xeon Platinum 8450h
Intel xeon Gold 5418n
Intel xeon Gold 6430
Intel xeon Gold 6433n
Intel xeon Platinum 8468h
Intel xeon Platinum 8444h
Intel xeon Silver 4410y
Intel xeon Gold 6403n
Intel xeon Gold 6434h
Intel xeon Gold 6444y
Intel xeon Platinum 8470
Intel xeon Gold 6416h
Intel xeon Gold 5433n
Intel xeon Gold 6443n
Intel xeon Gold 6448y
Intel xeon Silver 4410t
Intel xeon Gold 6423n
Intel xeon Gold 6428n
Intel xeon Platinum 8458p
Intel openbmc
Intel xeon Gold 5416s
Intel xeon Gold 6442y
Intel xeon Gold 6426y
Intel xeon Platinum 8452y
Intel xeon Gold 5420\+
Intel xeon Bronze 3408u
Intel xeon Gold 6438n
Intel xeon Gold 6458q
Intel xeon Gold 6421n
Intel xeon Gold 6433ne
Intel xeon Platinum 8460h
Intel xeon Platinum 8454h
Intel
Intel xeon Platinum 8461v
Intel xeon Gold 6414u
Intel xeon Gold 6454s
Intel xeon Gold 5415\+
Intel xeon Gold 6438m
Intel xeon Platinum 8460y\+
Intel xeon Gold 6448h
Intel xeon Gold 5412u
Intel xeon Platinum 8468
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00922.html - () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00922.html - Vendor Advisory

21 Nov 2024, 08:01

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00922.html - () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00922.html -

14 Feb 2024, 14:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-02-14 14:15

Updated : 2026-01-14 18:29

NVD link : CVE-2023-31189

Mitre link : CVE-2023-31189

CVE.ORG link : CVE-2023-31189

JSON object : View

Products Affected

intel

  • xeon_gold_6430
  • xeon_platinum_8454h
  • xeon_gold_5418y
  • xeon_platinum_8471n
  • xeon_gold_6433ne
  • xeon_gold_6421n
  • xeon_platinum_8461v
  • xeon_platinum_8468
  • xeon_gold_6403n
  • xeon_gold_6443n
  • xeon_platinum_8468h
  • xeon_platinum_8480\+
  • xeon_gold_6414u
  • xeon_gold_6438y\+
  • xeon_platinum_8444h
  • xeon_platinum_8458p
  • xeon_platinum_8490h
  • xeon_platinum_8470
  • xeon_gold_6438n
  • xeon_gold_6428n
  • xeon_gold_5416s
  • xeon_gold_6454s
  • xeon_gold_6458q
  • xeon_gold_5403n
  • xeon_gold_6426y
  • xeon_gold_6423n
  • xeon_gold_6434
  • xeon_gold_6448y
  • xeon_gold_6448h
  • xeon_platinum_8460h
  • xeon_platinum_8450h
  • xeon_gold_6438m
  • xeon_gold_6434h
  • xeon_gold_6442y
  • xeon_platinum_8468v
  • xeon_platinum_8452y
  • xeon_bronze_3408u
  • xeon_gold_6418h
  • xeon_gold_5420\+
  • xeon_gold_5423n
  • xeon_platinum_8470n
  • xeon_silver_4410t
  • xeon_gold_6444y
  • xeon_silver_4410y
  • xeon_gold_5411n
  • openbmc
  • xeon_gold_5418n
  • xeon_platinum_8462y\+
  • xeon_gold_5433n
  • xeon_platinum_8460y\+
  • xeon_gold_6433n
  • xeon_gold_6416h
  • xeon_gold_5412u
  • xeon_gold_5415\+
CWE
CWE-287

Improper Authentication