CVE-2023-28740

Uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:intel:quickassist_technology_library:22.07.1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:h:intel:quickassist_technology:*:*:*:*:*:windows:*:*
cpe:2.3:o:intel:quickassist_technology_firmware:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:h:intel:quickassist_technology:*:*:*:*:*:windows:*:*
cpe:2.3:o:intel:quickassist_technology_firmware:-:*:*:*:*:*:*:*

History

30 Nov 2023, 15:11

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-14 19:15

Updated : 2024-02-05 00:22


NVD link : CVE-2023-28740

Mitre link : CVE-2023-28740

CVE.ORG link : CVE-2023-28740


JSON object : View

Products Affected

microsoft

  • windows

intel

  • quickassist_technology_library
  • quickassist_technology
  • quickassist_technology_firmware
CWE
CWE-427

Uncontrolled Search Path Element