Vulnerability in Intel Ethernet_800_series_controllers_driver
CVE-2024-23499
Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially enable denial of service via network acce…
EPSS: 0.005 (40.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L.
Affected products
- Intel Ethernet_800_series_controllers_driver
- N/a Intel(r) Ethernet Network Controllers And Adapters E810 Series — versions before version 28.3
Weakness classification (CWE)
References
- secure@intel.com (Vendor Advisory)
Frequently asked questions
- What is CVE-2024-23499?
- CVE-2024-23499 is a medium-severity vulnerability in Intel Ethernet_800_series_controllers_driver, classified under Protection Mechanism Failure. CVSS score: 6.5/10. Published 2024-08-14.
- How severe is CVE-2024-23499?
- Medium severity. CVSS v3 base score is 6.5 out of 10.