PT-2019-4061 · Intel · Intel Smart Connect Technology

Marius Gabriel Mihai

Published

2019-10-08

Updated

2020-08-24

CVE-2019-11167

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Intel(R) Smart Connect Technology (affected versions not specified)

Description The issue is related to improper file permissions in the software installer for Intel(R) Smart Connect Technology, which may allow an authenticated user to potentially enable escalation of privilege via local access. The vulnerability is associated with insufficient access control, allowing an attacker to potentially elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Privilege Management

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-732

Related Identifiers

BDU:2019-04622

CVE-2019-11167

Affected Products

Intel Smart Connect Technology

PT-2019-4061 · Intel · Intel Smart Connect Technology

CVE-2019-11167

Weakness Enumeration

Related Identifiers

Affected Products

References · 3