PT-2023-20376 · Intel · Intel(R) Vcust Tool

Mohammed

Publicado

2023-08-11

Atualizado

2023-08-17

CVE-2023-25944

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) VCUST Tool versions prior to those downloaded on February 3rd, 2023

Description The issue is related to an uncontrolled search path element in the Intel(R) VCUST Tool software. This may allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations For Intel(R) VCUST Tool versions prior to those downloaded on February 3rd, 2023, update to a version downloaded on or after February 3rd, 2023, to resolve the issue.

Correção

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

CVE-2023-25944

Produtos afetados

Intel(R) Vcust Tool

PT-2023-20376 · Intel · Intel(R) Vcust Tool

CVE-2023-25944

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4