PT-2019-2348 · Intel · Intel Acu Wizard

Published

2019-05-14

Updated

2020-08-24

CVE-2019-0138

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel ACU Wizard versions 12.0.0.129 and earlier

Description The issue is related to insufficient access control in the Intel ACU Wizard utility. It may allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations For Intel ACU Wizard versions 12.0.0.129 and earlier, update to a version that addresses the insufficient access control issue to prevent potential privilege escalation.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732CWE-264

Related Identifiers

BDU:2019-02123

BDU:2019-02124

CVE-2019-0138

Affected Products

Intel Acu Wizard

PT-2019-2348 · Intel · Intel Acu Wizard

CVE-2019-0138

Weakness Enumeration

Related Identifiers

Affected Products

References · 6