PT-2022-17628 · Intel · Intel Enpirion Digital Power Configurator Gui

Marius Gabriel Mihai

Published

2022-08-18

Updated

2022-08-22

CVE-2022-25999

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) Enpirion(R) Digital Power Configurator GUI software (affected versions not specified)

Description The issue is related to an uncontrolled search path element in the software, which may allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2022-25999

Affected Products

Intel Enpirion Digital Power Configurator Gui

PT-2022-17628 · Intel · Intel Enpirion Digital Power Configurator Gui

CVE-2022-25999

Weakness Enumeration

Related Identifiers

Affected Products

References · 2