CVE-2023-25175
published 2023-05-10CVE-2023-25175: Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| intel | server_system_d50tnp1mhcpac_firmware | < 2.90 | 2.90 |
| intel | server_system_d50tnp1mhcrac_firmware | < 2.90 | 2.90 |
| intel | server_system_d50tnp1mhcrlc_firmware | < 2.90 | 2.90 |
| intel | server_system_d50tnp2mfalac_firmware | < 2.90 | 2.90 |
| intel | server_system_d50tnp2mhstac_firmware | < 2.90 | 2.90 |
| intel | server_system_d50tnp2mhsvac_firmware | < 2.90 | 2.90 |
| intel | server_system_m50cyp1ur204_firmware | < 2.90 | 2.90 |
| intel | server_system_m50cyp1ur212_firmware | < 2.90 | 2.90 |
| intel | server_system_m50cyp2ur208_firmware | < 2.90 | 2.90 |
| intel | server_system_m50cyp2ur312_firmware | < 2.90 | 2.90 |