Incorrect Default Permissions May Allow Escalation of Privilege via Local Access

CVE-2023-42668

6.7MEDIUM

Key Information

Vendor: Intel
Status: Onboard Video Driver Software For Intel(r) Server Boards Based On Intel(r) 62x Chipset
Vendor: CVE Published:; 16 May 2024

Summary

Incorrect default permissions in some onboard video driver software before version 1.14 for Intel(R) Server Boards based on Intel(R) 62X Chipset may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected Version(s)

onboard video driver software for Intel(R) Server Boards based on Intel(R) 62X Chipset = before version 1.14

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published.
May 16, 2024
Vulnerability Reserved.
Sep 14, 2023

Collectors

NVD DatabaseMitre Database