Description
Improper authentication in firmware for some Intel(R) SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
References (1)
Core 1
Core References
Mitigation, Vendor Advisory x_refsource_misc
https://www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf
Scores
CVSS v3
5.3
EPSS
0.0010
EPSS Percentile
27.2%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-287
Status
published
Products (30)
intel/ssd_600p_firmware
< 122c
intel/ssd_660p_firmware
< 005c
intel/ssd_665p_firmware
< 002c
intel/ssd_670p_firmware
< 003c
intel/ssd_700p_firmware
< 005c
intel/ssd_760p_firmware
< 006c
intel/ssd_d3-s4510_m.2_firmware
< xc311132
intel/ssd_d3-s4610_m.2_firmware
< xc311132
intel/ssd_d5-p4326_firmware
< 8dv1md58
intel/ssd_d5-p5316_firmware
< acv10200
... and 20 more
Published
Sep 20, 2022
Tracked Since
Feb 18, 2026