Vulnerability DatabaseCVE-2023-27517

CVE-2023-27517:
Linux Debian vulnerability analysis and mitigation

Overview

CVE-2023-27517 is a security vulnerability discovered in Intel® Optane™ PMem software, affecting versions prior to 01.00.00.3547, 02.00.00.3915, and 03.00.00.0483. The vulnerability was disclosed and published on February 14, 2024, and involves improper access control mechanisms in the software (Intel Advisory, NVD).

Technical details

The vulnerability is classified as an improper access control issue (CWE-284). According to the National Vulnerability Database, it received a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, while Intel Corporation assessed it with a score of 6.6 (MEDIUM) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H (NVD).

Impact

The vulnerability could allow an authenticated user to potentially achieve escalation of privilege through local access, potentially compromising system security and gaining elevated access to system resources (Intel Advisory).

Mitigation and workarounds

Intel has released security updates to address this vulnerability. Users should upgrade to Intel® Optane™ PMem software versions 01.00.00.3547, 02.00.00.3915, or 03.00.00.0483 or later, depending on their current version (Intel Advisory).

Additional resources

Source: This report was generated using AI

Related Linux Debian vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-23745	HIGH	8.2	JavaScript	argo-workflows-fips-3.6	No	Yes	Jan 16, 2026
CVE-2026-23535	HIGH	8	Python	wlc	No	Yes	Jan 16, 2026
CVE-2026-23490	HIGH	7.5	Python	pyasn1	No	Yes	Jan 16, 2026
CVE-2026-23643	MEDIUM	5.4	CakePHP	cakephp	No	Yes	Jan 16, 2026
CVE-2025-61873	LOW	2.6	Linux Debian	request-tracker4	No	Yes	Jan 16, 2026