How severe is CVE-2023-28938?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2023-28938?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2023-28938

MEDIUM Year: 2023

CVSS v3 Score

4.4

Medium

Weakness Type

CWE-400

View all →

Vulnerability Description

Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.

CVE-2018-17977

MEDIUM

CVSS:4.4(Medium)

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets, which allows local users to cause a denial of service (memory consumpti...

CWE-4002018

CVE-2021-0008

MEDIUM

CVSS:4.4(Medium)

Uncontrolled resource consumption in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow privileged user to potentially enable denia...

CWE-4002021

CVE-2021-0092

MEDIUM

CVSS:4.4(Medium)

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

CWE-4002021

CVE-2022-0353

MEDIUM

CVSS:4.4(Medium)

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrativ...

CWE-4002022