How severe is CVE-2024-23487?

CVE-2024-23487 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-23487

7.5HIGH

Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local acces

Published: 5/16/2024Updated: 11/21/2024

Description

Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local access.

AI AnalysisPowered by AI

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01080.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01080.html