Out-of-Bounds Write Vulnerability in Intel Arc Control Software
CVE-2023-25952

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Arc(tm) Control Software
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-25952?

The vulnerability in Intel Arc Control Software prior to version 1.73.5335.2 occurs due to an out-of-bounds write condition. This flaw may allow an authenticated user to exploit the software, potentially leading to a denial of service by executing malicious actions with local access. It highlights the necessity for users to update their software promptly to safeguard against this risk.

Affected Version(s)

Intel(R) Arc(TM) Control software before version 1.73.5335.2

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Mar 8, 2023