Intel CST Software Vulnerability Could Lead to Denial of Service
CVE-2023-41082

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Cst Software
Vendor: CVE Published:; 16 May 2024

Summary

A vulnerability in Intel's CST software prior to version 2.1.10300 allows an authenticated user to exploit a null pointer dereference. This can result in conditions that may induce a denial of service when local access is obtained. Protection against this potential threat requires upgrading to the latest software version provided by Intel. For more detailed insights, please reference Intel's security advisory.

Affected Version(s)

Intel(R) CST software before version 2.1.10300

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Aug 23, 2023