PT-2023-19056 · Ite Tech · Ite Tech Consumer Infrared Driver

Falcon Corruption

·

Publicado

2023-08-11

·

Atualizado

2023-08-23

·

CVE-2023-23577

CVSS v3.1

7.3

Alta

VetorAV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions ITE Tech consumer infrared drivers versions prior to 5.5.2.1 for Intel(R) NUC
Description The issue is related to an uncontrolled search path element in some ITE Tech consumer infrared drivers for Intel(R) NUC, which may allow an authenticated user to potentially enable escalation of privilege via local access.
Recommendations For versions prior to 5.5.2.1, update to version 5.5.2.1 or later to resolve the issue.

Correção

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

CVE-2023-23577

Produtos afetados

Ite Tech Consumer Infrared Driver