CVE-2023-28736: Buffer Overflow
First published: Fri Aug 11 2023(Updated: )
Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| mdadm | <4.2 | |
| mdadm | =4.2-rc1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this buffer overflow in Intel SSD Tools software?
The vulnerability ID is CVE-2023-28736.
What is the severity rating of CVE-2023-28736?
CVE-2023-28736 has a severity rating of 6.7, which is considered medium.
How does the buffer overflow vulnerability in Intel SSD Tools software potentially enable privilege escalation?
The buffer overflow in Intel SSD Tools software may allow a privileged user to potentially enable escalation of privilege through local access.
Which software versions are affected by CVE-2023-28736?
The affected software versions are mdadm before version 4.2-rc2 and mdadm version 4.2-rc1.
Is there a reference link for more information about this vulnerability?
Yes, you can find more information about CVE-2023-28736 at the following link: http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00690.html
- agent/author
- agent/type
- agent/softwarecombine
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/event
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- vendor/mdadm project
- canonical/mdadm
- version/mdadm/4.2-rc1