Privilege Escalation Vulnerability in Intel Unite Client Software
CVE-2022-33963

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Software Installer For Intel(r) Unite(r) Client Software For Windows
Vendor: CVE Published:; 10 May 2023

Summary

The Intel Unite Client software for Windows prior to version 4.2.34870 contains a vulnerability due to incorrect default permissions set in its installer. This flaw may allow authenticated users with local access to escalate their privileges, potentially leading to unauthorized access to sensitive data or features. Ensuring that software is updated to the latest version is crucial for protecting against this type of risk.

Affected Version(s)

software installer for Intel(R) Unite(R) Client software for Windows before version 4.2.34870

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Jul 24, 2022