Vulnerabilities > CVE-2023-22311 - Unspecified vulnerability in Intel Optane Persistent Memory Firmware

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2024-02-14

Updated: 2025-02-20

Summary

Improper access control in some Intel(R) Optane(TM) PMem 100 Series Management Software before version 01.00.00.3547 may allow an authenticated user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Optane Persistent Memory Firmware -	1
Hardware	Intel Intel Nma1Xxd128Gpsu4 - Intel Nma1Xxd128Gpsuf - Intel Nma1Xxd256Gpsu4 - Intel Nma1Xxd256Gpsuf - Intel Nma1Xxd512Gpsu4 - Intel Nma1Xxd512Gpsuf -	6

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00948.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00948.html