Denial of Service Risk in Intel Thunderbolt DCH Drivers for Windows
CVE-2023-26591

2LOW

Key Information:

Vendor: Intel
Status: Intel(r) Thunderbolt(tm) Dch Drivers For Windows
Vendor: CVE Published:; 14 February 2024

What is CVE-2023-26591?

An unchecked return value vulnerability in certain versions of Intel Thunderbolt DCH drivers for Windows allows potential denial of service when exploited by an unauthenticated user with physical access to the system. This issue primarily affects Intel's Thunderbolt drivers prior to version 88, posing risks for users and organizations reliant on these drivers for secure connectivity. To mitigate potential impacts, it is advisable to update to the latest versions as recommended by Intel's security advisory.

Affected Version(s)

Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2024
Vulnerability Reserved
Mar 1, 2023