CVE-2023-41092

Unchecked return value in SDM firmware for Intel(R) Stratix 10 and Intel(R) Agilex 7 FPGAs before version 23.3 may allow an authenticated user to potentially enable denial of service via adjacent access.

CVSS v3 7.6 HIGH

7.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 4.7

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01007.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01007.html

Configurations

No configuration.

History

21 Nov 2024, 08:20

Type	Values Removed	Values Added
Summary		(es) El valor de retorno no verificado en el firmware SDM para FPGA Intel(R) Stratix 10 e Intel(R) Agilex 7 anteriores a la versión 23.3 puede permitir que un usuario autenticado habilite potencialmente la denegación de servicio a través del acceso adyacente.
References	~~() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01007.html -~~	() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01007.html -

16 May 2024, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-16 21:15

Updated : 2024-11-21 08:20

NVD link : CVE-2023-41092

Mitre link : CVE-2023-41092

CVE.ORG link : CVE-2023-41092

JSON object : View

Products Affected

No product.

CWE

CWE-252

Unchecked Return Value

7.6 /10