CVE-2023-25775

MEDIUM

Intel Ethernet Controller RDMA Driver for Linux < 1.9.30 - Unauthenticated Privilege Escalation via Network Access

Title source: llm

Description

Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

References (4)

Core 4

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html

Vendor Advisory

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00794.html

Vendor Advisory

https://security.netapp.com/advisory/ntap-20230915-0013/

Mailing List

https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html

Scores

CVSS v3 5.6

EPSS 0.0058

EPSS Percentile 69.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE

CWE-284

Status published

Products (1)

intel/ethernet_controller_rdma_driver_for_linux < 1.9.30

Published Aug 11, 2023

Tracked Since Feb 18, 2026