CVE-2023-30768

high-risk
Published 2023-05-12

Improper access control in the Intel(R) Server Board S2600WTT belonging to the Intel(R) Server Board S2600WT Family with the BIOS version 0016 may allow a privileged user to potentially enable escalation of privilege via local access.

Do I need to act?

-
0.05% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.7/10 High
LOCAL / LOW complexity

Affected Products (20)

Server Board S1200V3Rpl Firmware
Server Board S1200V3Rpm Firmware
Server Board S1200V3Rpo Firmware
Server Board S1200V3Rps Firmware
Server Board S1400Fp2 Firmware
Server Board S1400Fp4 Firmware
Server Board S1400Sp4 Firmware
Server Board S1400Sp2 Firmware
Server Board S1600Jp2 Firmware
Server Board S1600Jp4 Firmware
Server Board S2400Bb4 Firmware
Server Board S2400Ep2 Firmware
Server Board S2400Ep4 Firmware
Server Board S2400Sc2 Firmware
Server Board S2600Co4 Firmware
Server Board S2600Coe Firmware
Server Board S2600Coeioc Firmware
Server Board S2600Cp2 Firmware
Server Board S2600Cp2Ioc Firmware
Server Board S2600Cp2J Firmware

Affected Vendors

Intel

References (2)

Mitigation https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00056....
Mitigation https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00056....
51
/ 100
high-risk
Severity 24/34 · High
Exploitability 0/34 · Minimal
Exposure 27/34 · High