Vulnerability Details CVE-2024-28947
Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family firmware before version 02.01.0017 may allow a privileged user to potentially enable escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.1%
CVSS Severity
CVSS v3 Score 8.2
Products affected by CVE-2024-28947
-
cpe:2.3:o:intel:server_board_s2600st_firmware:-
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0004
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0009
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0012
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0013
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0014
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0015
-
cpe:2.3:o:intel:server_board_s2600st_firmware:00.01.0016
-
cpe:2.3:o:intel:server_board_s2600st_firmware:02.01.0008
-
cpe:2.3:o:intel:server_board_s2600st_firmware:02.01.0009
-
cpe:2.3:o:intel:server_board_s2600st_firmware:02.01.0010
-
cpe:2.3:o:intel:server_board_s2600st_firmware:02.01.0011
-
cpe:2.3:o:intel:server_board_s2600st_firmware:1.59