CVE-2023-20510
3 documents3 sources
Severity
6.0MEDIUM
EPSS
0.0%
top 90.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 13
Description
An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in data corruption or denial of service.
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:HExploitability: 0.5 | Impact: 4.2
Affected Packages1 packages
🔴Vulnerability Details
2CVEList▶
CVE-2023-20510: An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in↗2024-08-13
GHSA▶
GHSA-xjg4-fwj3-xr89: An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in↗2024-08-13