CVE Published: 11/08/2023 |
CVE Updated: 10/10/2024 |
CVE Year: 2023 Source: intel |
Vendor: n/a |
Product: Intel(R) Unite(R) Hub software installer for Windows Status : PUBLISHED
CVE-2023-25773 Description
Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4.2.34962 may allow an authenticated user to potentially enable escalation of privilege via local access.
Metrics
CVSS Version: 3.1 |
Base Score: 7.5 HIGH Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
l➤ Exploitability Metrics: Attack Vector (AV)* LOCAL Attack Complexity (AC)* HIGH Privileges Required (PR)* LOW User Interaction (UI)* REQUIRED Scope (S)* CHANGED
l➤ Impact Metrics: Confidentiality Impact (C)* HIGH Integrity Impact (I)* HIGH Availability Impact (A)* HIGH
Weakness Enumeration (CWE)
CWE-ID: CWE Name: escalation of privilege Source: n/a
Common Attack Pattern Enumeration and Classification (CAPEC)