PT-2023-4406 · Intel · Intel(R) Support

Sheikh Rishad

Publicado

2023-08-08

Atualizado

2023-08-16

CVE-2023-27392

CVSS v2.0

4.6

Média

Vetor

AV:L/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel(R) Support android application versions prior to v23.02.07

Description The issue is related to incorrect default permissions in the Intel(R) Support android application, which may allow a privileged user to potentially enable information disclosure via local access. This could permit an attacker to gain unauthorized access to information.

Recommendations For versions prior to v23.02.07, update to version v23.02.07 or later to resolve the issue. As a temporary workaround, consider restricting local access to the application until a patch is applied.

Correção

Incorrect Default Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-276

Identificadores relacionados

BDU:2023-04751

CVE-2023-27392

Produtos afetados

Intel(R) Support

PT-2023-4406 · Intel · Intel(R) Support

CVE-2023-27392

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7