Medium severity6.1NVD Advisory· Published Sep 16, 2024· Updated Apr 15, 2026

CVE-2023-23904

Description

NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.netapp.com/advisory/ntap-20241011-0009/nvd
www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.397
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000