Insufficient Access Control in Intel Driver & Support Assistant
CVE-2019-11095

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Driver & Support Assistant
Vendor: CVE Published:; 17 May 2019

What is CVE-2019-11095?

A security vulnerability exists in Intel Driver & Support Assistant prior to version 19.3.12.3 that permits a privileged user to exploit insufficient access controls, potentially allowing unauthorized information disclosure through local access. This issue underscores the importance of maintaining updated software to safeguard sensitive data.

Affected Version(s)

Intel(R) Driver & Support Assistant Version 19.3.12.3 and before.

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://support.f5.com/csp/article/K05525310

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 17, 2019
Vulnerability Reserved
Apr 11, 2019

JSON