CVE-2023-34431 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.2 HIGH	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
intel	CNA	8.2 HIGH	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 17%

Vendor	Product	Version
intel	server_board_m70klp2sb_firmware	𝑥 < 01.04.0022
intel	server_system_m70klp4s2uhh_firmware	𝑥 < 01.04.0022
intel	server_board_m20ntp2sb_firmware	𝑥 < 0022.d02
intel	server_system_m20ntp1ur304_firmware	𝑥 < 0022.d02
intel	server_board_m10jnp2sb_firmware	𝑥 < 7.219
intel	server_board_s2600bpbr_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bps_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpsr_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpqr_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpb_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpq_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblcr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblc_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblc24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bps_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bps24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpbr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpqr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpsr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bps24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpq24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpb24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpb_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblc24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpq_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpq24_firmware	𝑥 < 02.01.0015
intel	compute_module_liquid-cooled_hns2600bpbrct_firmware	𝑥 < 02.01.0015
intel	server_system_vrn2224bpaf6_firmware	𝑥 < 02.01.0015
intel	server_system_vrn2224bphy6_firmware	𝑥 < 02.01.0015
intel	server_system_mcb2208wfaf5_firmware	𝑥 < 02.01.0015
intel	server_system_zsb2224bpaf2_firmware	𝑥 < 02.01.0015
intel	server_system_zsb2224bphy1_firmware	𝑥 < 02.01.0015
intel	server_system_zsb2224bpaf1_firmware	𝑥 < 02.01.0015

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00719.html