CVE-2023-25775 MEDIUM

CVE-2023-25775

Vendor N/A
Product Intel(R) Ethernet Controller RDMA driver for linux
Weakness CWE-284
Published August 11, 2023
Last update February 13, 2025

CVSS base score

5.6/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

Key dates

02Disclosure timeline

August 11, 2023 CVE published
February 13, 2025 Record updated