CVE-2023-27519

Vulnerability

An improper input validation vulnerability exists in the firmware of certain Intel(R) Optane(TM) SSD products [1]. This flaw can be triggered by a privileged local user, potentially allowing for an escalation of privilege. The affected products include Intel Optane SSD 905P Series, Intel Optane SSD 900P Series, Intel Optane Memory H20 Series, Intel Optane Memory M10 Series, and Intel Optane SSD DC P4800X Series with firmware versions prior to the ones specified in the updated firmware table [1].

Exploitation

An attacker with local access and elevated privileges (e.g., administrator or system-level access) can exploit this vulnerability. The specific attack vector involves providing malformed input to the firmware interface, which the firmware fails to validate correctly. This can lead to unexpected behavior that bypasses security checks [1].

Impact

Successful exploitation could allow an attacker to escalate their privileges beyond what is normally granted to a privileged user. This could lead to full compromise of the affected SSD's firmware and potentially the host system, depending on the privileges obtained. The impact scope includes integrity and availability of the device [1].

Mitigation

Intel has released firmware updates to address this vulnerability. Users should update the firmware of their Intel Optane SSD products to the versions specified in the Intel security advisory INTEL-SA-00758 [1]. The advisory provides a link to the firmware download page. There are no workarounds provided for this issue. The vulnerability is not known to be listed in KEV [1].