Vulnerability Details CVE-2023-22297
Access of memory location after end of buffer in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.8%
CVSS Severity
CVSS v3 Score 8.2
References
Products affected by CVE-2023-22297
-
cpe:2.3:h:intel:server_system_d50tnp1mhcpac:-
-
cpe:2.3:h:intel:server_system_d50tnp1mhcrac:-
-
cpe:2.3:h:intel:server_system_d50tnp1mhcrlc:-
-
cpe:2.3:h:intel:server_system_d50tnp2mfalac:-
-
cpe:2.3:h:intel:server_system_d50tnp2mhstac:-
-
cpe:2.3:h:intel:server_system_d50tnp2mhsvac:-
-
cpe:2.3:h:intel:server_system_m50cyp1ur204:-
-
cpe:2.3:h:intel:server_system_m50cyp1ur212:-
-
cpe:2.3:h:intel:server_system_m50cyp2ur208:-
-
cpe:2.3:h:intel:server_system_m50cyp2ur312:-
-
cpe:2.3:o:intel:server_system_d50tnp1mhcpac_firmware:-
-
cpe:2.3:o:intel:server_system_d50tnp1mhcrac_firmware:-
-
cpe:2.3:o:intel:server_system_d50tnp1mhcrlc_firmware:-
-
cpe:2.3:o:intel:server_system_d50tnp2mfalac_firmware:-
-
cpe:2.3:o:intel:server_system_d50tnp2mhstac_firmware:-
-
cpe:2.3:o:intel:server_system_d50tnp2mhsvac_firmware:-
-
cpe:2.3:o:intel:server_system_m50cyp1ur204_firmware:-
-
cpe:2.3:o:intel:server_system_m50cyp1ur212_firmware:-
-
cpe:2.3:o:intel:server_system_m50cyp2ur208_firmware:-
-
cpe:2.3:o:intel:server_system_m50cyp2ur312_firmware:-