CVE-2023-31331 LOW

CVE-2023-31331

Weakness CWE-1284
Published February 11, 2025
Last update February 12, 2025

CVSS base score

3.0/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:L

What the vulnerability does

01Description

Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of integrity or availability.

Key dates

02Disclosure timeline

February 11, 2025 CVE published
February 12, 2025 Record updated