CVE-2023-31360
Published: 11 February 2025
Summary
CVE-2023-31360 is a high-severity Incorrect Default Permissions (CWE-276) vulnerability in Amd (inferred from references). Its CVSS base score is 7.3 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 12.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 CM-6 (Configuration Settings) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2023-31360 involves incorrect default permissions in the installation directory of the AMD Integrated Management Technology (AIM-T) Manageability Service. This vulnerability, classified under CWE-276, affects the AIM-T Manageability Service component on AMD systems and was published on 2025-02-11.
The vulnerability has a CVSS v3.1 base score of 7.3 (AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H). A local attacker with low privileges can exploit the improper permissions, requiring user interaction, to achieve privilege escalation and potentially execute arbitrary code with elevated privileges.
AMD Security Bulletin AMD-SB-9012 provides details on mitigation and patches: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-9012.html.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-35671
Vulnerability details
Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability Service installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Weak default directory permissions enable local privilege escalation to execute code with higher privileges.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly remediates the vulnerability by applying patches from AMD-SB-9012 that correct the incorrect default permissions in the AIM-T Manageability Service installation directory.
Establishes and enforces secure configuration settings, including restrictive file permissions on the AIM-T installation directory to prevent low-privilege attacker modification.
Enforces least privilege to restrict unnecessary elevated access, limiting the potential success and impact of privilege escalation via exploited directory permissions.