CVE-2023-34431: Input Validation
First published: Tue Nov 14 2023(Updated: )
Improper input validation in some Intel(R) Server Board BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Intel Server Board m70klp2sb firmware | <01.04.0022 | |
| Intel Server board m70klp2sb firmware | ||
| All of | ||
| Intel Server System m70klp4s2uhh firmware | ||
| Intel Server System m70klp4s2uhh firmware | <01.04.0022 | |
| All of | ||
| Intel Server Board M20NTP2SB Firmware | ||
| Intel Server Board M20NTP2SB | <0022.d02 | |
| All of | ||
| Intel Server System m20ntp1ur304 firmware | ||
| Intel Server System | <0022.d02 | |
| All of | ||
| Intel Server Board M10JNP2SB Firmware | ||
| Intel Server Board M10JNP2SB | <7.219 | |
| All of | ||
| Intel S2600BPBR Firmware | ||
| Intel Server Board S2600BPB Firmware | <02.01.0015 | |
| All of | ||
| Intel Server Board S2600BPS Firmware | ||
| Intel Server Board S2600BPS Firmware | <02.01.0015 | |
| All of | ||
| Intel Server Board S2600BPSR Firmware | ||
| Intel Server Board S2600BP Firmware | <02.01.0015 | |
| All of | ||
| Intel S2600BPQR Firmware | ||
| Intel S2600BPQR Firmware | <02.01.0015 | |
| All of | ||
| Intel Server Board S2600BPB Firmware | ||
| Intel Server Board S2600BPB Firmware | <02.01.0015 | |
| All of | ||
| Intel Server Board S2600BPQ | ||
| Intel Server Board S2600BPQ | <02.01.0015 | |
| All of | ||
| Intel Compute Module HNS2600BPBLCR Firmware | ||
| Intel Compute Module HNS2600 | <02.01.0015 | |
| All of | ||
| Intel Compute Module hns2600bpblc | ||
| Intel Compute Module HNS2600 | <02.01.0015 | |
| All of | ||
| Intel Compute Module HNS2600BPBL-C24R Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPBL-C24R Firmware | ||
| All of | ||
| Intel HNS2600BPS Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPS | ||
| All of | ||
| Intel Compute Module HNS2600BPS24 Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPS24 Firmware | ||
| All of | ||
| Intel Compute Module HNS2600BPBR Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600 | ||
| All of | ||
| Intel Compute Module HNS2600BPQR Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600 | ||
| All of | ||
| Intel Compute Module HNS2600BPSR Firmware | <02.01.0015 | |
| Intel Compute Module hns2600bpsr | ||
| All of | ||
| Intel Compute Module HNS2600BPS24R Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPS24R Firmware | ||
| All of | ||
| Intel Compute Module HNS2600BPQ24R Firmware | <02.01.0015 | |
| Intel compute module hns2600bpq24r firmware | ||
| All of | ||
| Intel Compute Module HNS2600BPB24R Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPB24 Firmware | ||
| All of | ||
| Intel Compute Module hns2600bp firmware | <02.01.0015 | |
| Intel Compute Module hns2600bpb firmware | ||
| All of | ||
| Intel Compute Module HNS2600BPBL-C24 Firmware | <02.01.0015 | |
| Intel compute module hns2600bpblc24 firmware | ||
| All of | ||
| Intel Compute Module HNS2600BPQR Firmware | <02.01.0015 | |
| Intel Compute Module hns2600bpq | ||
| All of | ||
| Intel HNS2600BPQ24 Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPQ24 Firmware | ||
| All of | ||
| Intel Compute Module HNS2600BPBRCT Firmware | <02.01.0015 | |
| Intel Compute Module HNS2600BPBRCT | ||
| All of | ||
| Intel Server System VRN2224BPAF6 Firmware | <02.01.0015 | |
| Intel Server System VRN2224BPAF6 Firmware | ||
| All of | ||
| Intel Server System VRN2224BPHY6 | <02.01.0015 | |
| Intel Server system vrn2224bphy6 firmware | ||
| All of | ||
| Intel Server System mcb2208wfaf5 firmware | <02.01.0015 | |
| Intel Server System mcb2208wfaf5 firmware | ||
| All of | ||
| Intel Server System ZSB2224BPAF2 Firmware | <02.01.0015 | |
| Intel Server System ZSB2224BPAF2 Firmware | ||
| All of | ||
| Intel Server System ZSB2224BPHY1 Firmware | <02.01.0015 | |
| Intel Server System ZSB2224BPHY1 Firmware | ||
| All of | ||
| Intel Server System ZSB2224BPAF1 Firmware | <02.01.0015 | |
| Intel Server system zsb2224bpaf1 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-34431?
CVE-2023-34431 has a medium severity rating as it could allow a privileged user to escalate privileges via local access.
How do I fix CVE-2023-34431?
To fix CVE-2023-34431, it is recommended to update the affected Intel Server Board BIOS firmware to the latest version available.
Which Intel products are affected by CVE-2023-34431?
CVE-2023-34431 affects several Intel Server Boards and Systems, specifically those with BIOS firmware versions prior to 01.04.0022 for certain models.
What type of vulnerability is CVE-2023-34431?
CVE-2023-34431 is classified as an improper input validation vulnerability.
Can CVE-2023-34431 be exploited remotely?
No, CVE-2023-34431 cannot be exploited remotely; it requires local access to the affected system.
- agent/type
- agent/event
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel server board m70klp2sb firmware
- canonical/intel server system m70klp4s2uhh firmware
- canonical/intel server board m20ntp2sb firmware
- canonical/intel server board m20ntp2sb
- canonical/intel server system m20ntp1ur304 firmware
- canonical/intel server system
- canonical/intel server board m10jnp2sb firmware
- canonical/intel server board m10jnp2sb
- canonical/intel s2600bpbr firmware
- canonical/intel server board s2600bpb firmware
- canonical/intel server board s2600bps firmware
- canonical/intel server board s2600bpsr firmware
- canonical/intel server board s2600bp firmware
- canonical/intel s2600bpqr firmware
- canonical/intel server board s2600bpq
- canonical/intel compute module hns2600bpblcr firmware
- canonical/intel compute module hns2600
- canonical/intel compute module hns2600bpblc
- canonical/intel compute module hns2600bpbl-c24r firmware
- canonical/intel hns2600bps firmware
- canonical/intel compute module hns2600bps
- canonical/intel compute module hns2600bps24 firmware
- canonical/intel compute module hns2600bpbr firmware
- canonical/intel compute module hns2600bpqr firmware
- canonical/intel compute module hns2600bpsr firmware
- canonical/intel compute module hns2600bpsr
- canonical/intel compute module hns2600bps24r firmware
- canonical/intel compute module hns2600bpq24r firmware
- canonical/intel compute module hns2600bpb24r firmware
- canonical/intel compute module hns2600bpb24 firmware
- canonical/intel compute module hns2600bp firmware
- canonical/intel compute module hns2600bpb firmware
- canonical/intel compute module hns2600bpbl-c24 firmware
- canonical/intel compute module hns2600bpblc24 firmware
- canonical/intel compute module hns2600bpq
- canonical/intel hns2600bpq24 firmware
- canonical/intel compute module hns2600bpq24 firmware
- canonical/intel compute module hns2600bpbrct firmware
- canonical/intel compute module hns2600bpbrct
- canonical/intel server system vrn2224bpaf6 firmware
- canonical/intel server system vrn2224bphy6
- canonical/intel server system vrn2224bphy6 firmware
- canonical/intel server system mcb2208wfaf5 firmware
- canonical/intel server system zsb2224bpaf2 firmware
- canonical/intel server system zsb2224bphy1 firmware
- canonical/intel server system zsb2224bpaf1 firmware