Potential Escalation of Privilege Vulnerability in Intel GPA Software Installers
CVE-2023-40071

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Gpa Software Installers
Vendor: CVE Published:; 16 May 2024

What is CVE-2023-40071?

The vulnerability in Intel GPA software installers represents an improper access control issue that could allow an authenticated user to escalate privileges on affected systems. This flaw specifically targets versions released prior to 2023.3, enabling local access users to potentially gain unauthorized control over the system's resources. This highlights the importance of adopting updated versions to mitigate risks associated with such vulnerabilities and ensure robust security measures are in place.

Affected Version(s)

Intel(R) GPA software installers before version 2023.3

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Oct 12, 2023