关键信息 Intel ID: INTEL-SA-01257 Advisory Category: Firmware Impact of Vulnerability: Denial of Service Severity Rating: MEDIUM Original Release: 08/12/2025 Last Revised: 08/12/2025 Summary A potential security vulnerability for the Intel® E810 Ethernet may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details CVE ID: CVE-2023-24296 Description: Improper input validation in some firmware for the Intel® E810 Ethernet before version 4.6 may allow a privileged user to enable denial of service via local access. CVSS Base Score 3.1: 6.0 Medium CVSS Vector 3.1: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H CVSS Base Score 4.0: 5.1 Medium CVSS Vector 4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/W:N/VA:H/SC:N/SI:N/SA:N Affected Products Intel® E810 Ethernet NVM firmware before version 4.6. Recommendation Intel recommends updating to 4.6 or later. Updates are available for download at this location: Non-Volatile Memory (NVM) Update Utility for Intel® Ethernet Network Adapter E810 Series Acknowledgements This issue was found internally by Intel.