Privilege Escalation Vulnerability in Intel Connectivity Performance Suite
CVE-2023-43747

6.7MEDIUM

What is CVE-2023-43747?

A security vulnerability exists in the Intel Connectivity Performance Suite software installers due to incorrect default permissions. This issue affects versions prior to 2.0, allowing an authenticated local user to potentially escalate their privileges. Attackers could exploit this vulnerability to gain unauthorized access to sensitive functions and data within the application, posing significant security risks. Organizations utilizing this software should assess their installations and apply necessary patches to mitigate the risk.

Affected Version(s)

Intel(R) Connectivity Performance Suite software installers before version 2.0

References

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.