PT-2024-2705 · Intel · Intel Chipset Driver
J00Sean
·
Published
2024-02-13
·
Updated
2025-01-07
·
CVE-2023-28739
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) Chipset Driver Software versions prior to 10.1.19444.8378
Description
The issue is related to incorrect default permissions in some Intel(R) Chipset Driver Software, which may allow an authenticated user to potentially enable escalation of privilege via local access. This could potentially be exploited by an attacker to gain elevated privileges.
Recommendations
For versions prior to 10.1.19444.8378, update to version 10.1.19444.8378 or later to resolve the issue. As a temporary workaround, consider restricting local access to the system to minimize the risk of exploitation.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Chipset Driver