CVE-2023-31276

High

Published: 12 February 2025

Published

12 February 2025

Modified

15 April 2026

KEV Added

—

Patch

—

CVSS Score 8.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

EPSS Score 0.0010 27.8th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

Heap-based buffer overflow in BMC Firmware for the Intel(R) Server Board S2600WF, Intel(R) Server Board S2600ST, Intel(R) Server Board S2600BP, before version 02.01.0017 and Intel(R) Server Board M50CYP and Intel(R) Server Board D50TNP before version R01.01.0009 may allow a privileged user to enable escalation of privilege via local access.

Security Summary

CVE-2023-31276 is a heap-based buffer overflow vulnerability (CWE-122) in the Baseboard Management Controller (BMC) firmware for several Intel server boards, including the Intel Server Board S2600WF, S2600ST, and S2600BP prior to version 02.01.0017, as well as the Intel Server Board M50CYP and D50TNP prior to version R01.01.0009. Published on 2025-02-12, it carries a CVSS v3.1 base score of 8.2 (AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H), indicating high severity due to its potential for significant confidentiality, integrity, and availability impacts with a changed scope.

A privileged user with local access can exploit this vulnerability by triggering the heap-based buffer overflow in the BMC firmware, potentially enabling escalation of privileges. The attack requires high privileges (PR:H) and local access (AV:L) with low complexity (AC:L) and no user interaction (UI:N), allowing the attacker to gain elevated control over the affected system.

Intel's security advisory (INTEL-SA-00990) details the issue and recommends updating the BMC firmware to version 02.01.0017 or later for the S2600WF, S2600ST, and S2600BP models, and to version R01.01.0009 or later for the M50CYP and D50TNP models as the primary mitigation.

Details

CWE(s): CWE-122

References

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-00990.html
secure@intel.com