Intel XTU Software Vulnerability Enables Local Privilege Escalation Risk
CVE-2023-34350

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Xtu Software
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-34350?

The Intel XTU software prior to version 7.12.0.15 exhibits a vulnerability stemming from an uncontrolled search path element. This flaw could potentially allow authenticated users to escalate their privileges through local access, posing a security risk. Users are advised to upgrade to the latest version to mitigate this vulnerability and secure their systems.

Affected Version(s)

Intel(R) XTU software before version 7.12.0.15

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Jun 6, 2023