Intel UEFI Firmware Untrusted Pointer Deref Escalation
CVE-2023-42772 Published on September 16, 2024

Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a privileged user to potentially enable escalation of privilege via local access.

NVD

Vulnerability Analysis

CVE-2023-42772 is exploitable with local system access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:
LOCAL
Attack Complexity:
LOW
Privileges Required:
HIGH
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH

Weakness Type

Untrusted Pointer Dereference

The program obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.


Products Associated with CVE-2023-42772

Want to know whenever a new CVE is published for Intel products? stack.watch will email you.

Intel Core I9 10900x X Series Firmware
 
Intel Core I9 10920x X Series Firmware
 
Intel Core I9 10940x X Series Firmware
 
Intel Xeon E5 1603 V4 Firmware
 
Intel Xeon E5 1607 V4 Firmware
 
Intel Xeon E5 1620 V3 Firmware
 
Intel Xeon E5 1620 V4 Firmware
 
Intel Xeon E5 1630 V3 Firmware
 
Intel Xeon E5 1630 V4 Firmware
 
Intel Xeon E5 1650 V3 Firmware
 
Intel Xeon E5 1650 V4 Firmware
 
Intel Xeon E5 1660 V3 Firmware
 
Intel Xeon E5 1660 V4 Firmware
 
Intel Xeon E5 1680 V3 Firmware
 
Intel Xeon E5 1680 V4 Firmware
 
Intel Xeon E5 2603 V3 Firmware
 
Intel Xeon E5 2603 V4 Firmware
 
Intel Xeon E5 2609 V3 Firmware
 
Intel Xeon E5 2609 V4 Firmware
 
Intel Xeon E5 2620 V3 Firmware
 
Intel Xeon E5 2620 V4 Firmware
 
Intel Xeon E5 2623 V3 Firmware
 
Intel Xeon E5 2623 V4 Firmware
 
Intel Xeon E5 2630 V3 Firmware
 
Intel Xeon E5 2630 V4 Firmware
 
Intel Xeon E5 2637 V3 Firmware
 
Intel Xeon E5 2637 V4 Firmware
 
Intel Xeon E5 2640 V3 Firmware
 
Intel Xeon E5 2640 V4 Firmware
 
Intel Xeon E5 2643 V3 Firmware
 
Intel Xeon E5 2643 V4 Firmware
 
Intel Xeon E5 2650 V3 Firmware
 
Intel Xeon E5 2650 V4 Firmware
 
Intel Xeon E5 2658 V3 Firmware
 
Intel Xeon E5 2658 V4 Firmware
 
Intel Xeon E5 2660 V3 Firmware
 
Intel Xeon E5 2660 V4 Firmware
 
Intel Xeon E5 2667 V3 Firmware
 
Intel Xeon E5 2667 V4 Firmware
 
Intel Xeon E5 2670 V3 Firmware
 
Intel Xeon E5 2679 V4 Firmware
 
Intel Xeon E5 2680 V3 Firmware
 
Intel Xeon E5 2680 V4 Firmware
 
Intel Xeon E5 2683 V3 Firmware
 
Intel Xeon E5 2683 V4 Firmware
 
Intel Xeon E5 2689 V4 Firmware
 
Intel Xeon E5 2690 V3 Firmware
 
Intel Xeon E5 2690 V4 Firmware
 
Intel Xeon E5 2695 V3 Firmware
 
Intel Xeon E5 2695 V4 Firmware
 
Intel Xeon E5 2697 V3 Firmware
 
Intel Xeon E5 2697 V4 Firmware
 
Intel Xeon E5 2698 V3 Firmware
 
Intel Xeon E5 2698 V4 Firmware
 
Intel Xeon E5 2699 V3 Firmware
 
Intel Xeon E5 2699 V4 Firmware
 
Intel Xeon E5 4610 V3 Firmware
 
Intel Xeon E5 4610 V4 Firmware
 
Intel Xeon E5 4620 V3 Firmware
 
Intel Xeon E5 4620 V4 Firmware
 
Intel Xeon E5 4627 V3 Firmware
 
Intel Xeon E5 4627 V4 Firmware
 
Intel Xeon E5 4640 V3 Firmware
 
Intel Xeon E5 4640 V4 Firmware
 
Intel Xeon E5 4648 V3 Firmware
 
Intel Xeon E5 4650 V3 Firmware
 
Intel Xeon E5 4650 V4 Firmware
 
Intel Xeon E5 4655 V4 Firmware
 
Intel Xeon E5 4660 V3 Firmware
 
Intel Xeon E5 4660 V4 Firmware
 
Intel Xeon E5 4667 V3 Firmware
 
Intel Xeon E5 4667 V4 Firmware
 
Intel Xeon E5 4669 V3 Firmware
 
Intel Xeon E5 4669 V4 Firmware
 
Intel Xeon Processor D 1513n Firmware
 
Intel Xeon Processor D 1518 Firmware
 
Intel Xeon Processor D 1520 Firmware
 
Intel Xeon Processor D 1521 Firmware
 
Intel Xeon Processor D 1523n Firmware
 
Intel Xeon Processor D 1527 Firmware
 
Intel Xeon Processor D 1528 Firmware
 
Intel Xeon Processor D 1529 Firmware
 
Intel Xeon Processor D 1531 Firmware
 
Intel Xeon Processor D 1533n Firmware
 
Intel Xeon Processor D 1537 Firmware
 
Intel Xeon Processor D 1539 Firmware
 
Intel Xeon Processor D 1540 Firmware
 
Intel Xeon Processor D 1541 Firmware
 
Intel Xeon Processor D 1548 Firmware
 
Intel Xeon Processor D 1553n Firmware
 
Intel Xeon Processor D 1557 Firmware
 
Intel Xeon Processor D 1559 Firmware
 
Intel Xeon Processor D 1567 Firmware
 
Intel Xeon Processor D 1571 Firmware
 
Intel Xeon Processor D 1577 Firmware
 
Intel Xeon D 1581 Firmware
 
Intel Xeon D 1587 Firmware
 
Intel Xeon D 1602 Firmware
 
Intel Xeon D 1612 Firmware
 
Intel Xeon D 1622 Firmware
 
Intel Xeon D 1627 Firmware
 
Intel Xeon D 1632 Firmware
 
Intel Xeon D 1637 Firmware
 
Intel Xeon D 1702 Firmware
 
Intel Xeon D 1714 Firmware
 
Intel Xeon D 1726 Firmware
 
Intel Xeon D 1736 Firmware
 
Intel Xeon D 1739 Firmware
 
Intel Xeon D 2191 Firmware
 
Intel Xeon D 2738 Firmware
 
Intel Xeon D 2779 Firmware
 
Intel Xeon D 2799 Firmware
 

Exploit Probability

EPSS
0.06%
Percentile
17.18%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.