Potential Escalation of Privilege Vulnerability in Intel Chipset Driver Software
CVE-2023-25174

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Chipset Driver Software
Vendor: CVE Published:; 14 February 2024

What is CVE-2023-25174?

An improper access control vulnerability exists in Intel Chipset Driver Software versions earlier than 10.1.19444.8378. This issue could allow an authenticated user to exploit the vulnerability and potentially escalate their privileges through local access, posing a significant risk to system integrity and security. Proper remediation and updates are crucial to mitigate this risk.

Affected Version(s)

Intel(R) Chipset Driver Software before version 10.1.19444.8378

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2024
Vulnerability Reserved
Mar 4, 2023