Potential Escalation of Privilege Vulnerability in Intel MAS Software
CVE-2023-41090

6.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Mas Software
Vendor: CVE Published:; 14 February 2024

What is CVE-2023-41090?

A race condition has been identified in Intel Management Accelerator Software, which may permit a privileged local user to escalate their privileges. This vulnerability exists in versions of the software prior to 2.3, posing potential risks to system integrity if exploited. For more information on remediation and mitigation, refer to Intel's official security advisory.

Affected Version(s)

Intel(R) MAS software before version 2.3

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2024
Vulnerability Reserved
Aug 23, 2023