MEDIUM✓ PATCH🇬🇧 English

CVE-2023-32646

CVSS 6.7v3.1pub. 2024-02-14upd. 2024-11-21

Uncontrolled search path element in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
  • Intel Virtual Raid On Cpu

    APP
    Intel
    < 8.0.8.1001
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2022-45112HIGH7.3ten sam produkt

Improper access control in some Intel(R) VROC software before version 8.0.0.4035 may allow an authenticated us...

CVE-2022-29919HIGH7.8ten sam produkt

Use after free in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to pote...

CVE-2024-29079MEDIUM6.9ten sam produkt

Insufficient control flow management in some Intel(R) VROC software before version 8.6.0.3001 may allow an aut...

CVE-2024-23489MEDIUM5.4ten sam produkt

Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may allow an authenticated ...

CVE-2023-31271MEDIUM6.7ten sam produkt

Improper access control in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated us...

CVE-2023-32646 — MEDIUM 6.7 | CVEbaza.pl