Potential Escalation of Privilege via Local Access
CVE-2023-39433

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Cst Software
Vendor: CVE Published:; 16 May 2024

Summary

An improper access control issue exists in Intel CST Software that may permit an authenticated user to escalate privileges when accessing the system locally. This vulnerability affects versions of the software prior to 2.1.10300, potentially exposing systems to unauthorized actions by users who should have limited access. Users and administrators should apply the latest updates to ensure that security measures are fully effective and that the risk of privilege escalation is mitigated.

Affected Version(s)

Intel(R) CST software before version 2.1.10300

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Aug 23, 2023