CVE-2023-40156

Uncontrolled search path element in some Intel(R) SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:system_support_utility:*:*:*:*:*:windows:*:*

History

25 Oct 2024, 19:59

Type Values Removed Values Added
CPE cpe:2.3:a:intel:system_support_utility:*:*:*:*:*:windows:*:*
Summary
  • (es) El elemento de ruta de búsqueda no controlado en algunos software Intel(R) SSU anteriores a la versión 3.0.0.2 puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local.
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01011.html - () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01011.html - Vendor Advisory
First Time Intel
Intel system Support Utility
CVSS v2 : unknown
v3 : 6.7
v2 : unknown
v3 : 7.8

14 Feb 2024, 15:01

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-14 14:16

Updated : 2024-10-25 19:59


NVD link : CVE-2023-40156

Mitre link : CVE-2023-40156

CVE.ORG link : CVE-2023-40156


JSON object : View

Products Affected

intel

  • system_support_utility
CWE
CWE-427

Uncontrolled Search Path Element