Uncontrolled Search Path Vulnerability in Intel DSA Software Uninstallers Could Lead to Escalation of Privilege
CVE-2023-45743

7.3HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Dsa Software Uninstallers
Vendor: CVE Published:; 16 May 2024

What is CVE-2023-45743?

The vulnerability in Intel DSA software uninstallers prior to version 23.4.39.10 arises from an uncontrolled search path that may allow an authenticated user to escalate privileges through local access, potentially compromising system security. This issue necessitates immediate attention to safeguard sensitive information and maintain system integrity.

Affected Version(s)

Intel(R) DSA software uninstallers before version 23.4.39.10

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Oct 12, 2023