Vulnerability Description
Out-of-bounds read in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Atom X6200Fe Firmware | - |
| Intel | Atom X6200Fe | - |
| Intel | Atom X6211E Firmware | - |
| Intel | Atom X6211E | - |
| Intel | Atom X6212Re Firmware | - |
| Intel | Atom X6212Re | - |
| Intel | Atom X6413E Firmware | - |
| Intel | Atom X6413E | - |
| Intel | Atom X6414Re Firmware | - |
| Intel | Atom X6414Re | - |
| Intel | Atom X6425E Firmware | - |
| Intel | Atom X6425E | - |
| Intel | Atom X6425Re Firmware | - |
| Intel | Atom X6425Re | - |
| Intel | Atom X6427Fe Firmware | - |
| Intel | Atom X6427Fe | - |
| Intel | Celeron 1000M Firmware | - |
| Intel | Celeron 1000M | - |
| Intel | Celeron 1005M Firmware | - |
| Intel | Celeron 1005M | - |
Related Weaknesses (CWE)
References
- https://security.netapp.com/advisory/ntap-20231221-0008/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00924.Vendor Advisory
- https://security.netapp.com/advisory/ntap-20231221-0008/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00924.Vendor Advisory
FAQ
What is CVE-2023-25756?
CVE-2023-25756 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Out-of-bounds read in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
How severe is CVE-2023-25756?
CVE-2023-25756 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-25756?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Atom X6200Fe Firmware, Intel Atom X6200Fe, Intel Atom X6211E Firmware, Intel Atom X6211E, Intel Atom X6212Re Firmware.