Potential Escalation of Privilege Vulnerability in Intel VROC Software
CVE-2023-35003

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Vroc Software
Vendor: CVE Published:; 14 February 2024

What is CVE-2023-35003?

A path transversal vulnerability exists in certain versions of Intel VROC software, specifically before version 8.0.8.1001. This flaw may allow authenticated users to exploit the software, potentially leading to escalation of privileges through local access. It highlights the importance of regularly updating software to mitigate security risks and protect against unauthorized access. Organizations utilizing Intel VROC should evaluate their systems and ensure they implement security best practices to address this vulnerability.

Affected Version(s)

Intel(R) VROC software before version 8.0.8.1001

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2024
Vulnerability Reserved
Jul 11, 2023