Access Control Flaw in Intel Thunderbolt DCH Drivers for Windows
CVE-2023-26585

5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Thunderbolt(tm) Dch Drivers For Windows
Vendor: CVE Published:; 14 February 2024

What is CVE-2023-26585?

An improper access control vulnerability exists in certain Intel Thunderbolt DCH drivers for Windows prior to version 88. This flaw has the potential to be exploited by an authenticated user to execute a denial of service attack via local access. The implications of this vulnerability underscore the importance of maintaining updated driver versions to protect against such possible exploits.

Affected Version(s)

Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2024
Vulnerability Reserved
Mar 1, 2023