PT-2023-4396 · Intel · Intel Unite Client

Kang Ali

Publicado

2023-08-08

Atualizado

2023-08-16

CVE-2023-25182

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Unite Client versions prior to 4.2.11

Description The issue is related to an uncontrolled search path element in the Intel Unite Client software. This could allow an authenticated user to potentially enable escalation of privilege via local access, resulting in unauthorized access to information.

Recommendations For versions prior to 4.2.11, update to version 4.2.11 or later to resolve the issue. As a temporary workaround, consider restricting local access to the system until the update is applied.

Correção

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

BDU:2023-04741

CVE-2023-25182

Produtos afetados

Intel Unite Client

PT-2023-4396 · Intel · Intel Unite Client

CVE-2023-25182

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8