Access Control Vulnerability in Intel CIP Software
CVE-2023-43489

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Cip Software
Vendor: CVE Published:; 14 August 2024

Summary

The vulnerability arises due to improper access control mechanisms in Intel's CIP software, which prior to version 2.4.10717 allows authenticated users to exploit the system. This exploitation can potentially lead to denial of service situations through local access, impacting the overall system's functionality and availability. Organizations relying on affected versions should consider upgrading to mitigate these risks. For comprehensive details, refer to Intel's official advisory.

Affected Version(s)

Intel(R) CIP software before version 2.4.10717

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 14, 2024
Vulnerability Reserved
Sep 22, 2023