Intel Power Gadget Software Vulnerability Could Lead to Denial of Service
CVE-2023-45846

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Power Gadget Software For Mac OS
Vendor: CVE Published:; 16 May 2024

What is CVE-2023-45846?

The Intel Power Gadget software for macOS has a vulnerability characterized by incomplete cleanup processes that may be exploited by an authenticated user. This weakness can potentially allow the user to enable a denial of service condition through local access, which poses a threat to the stability and security of systems running the affected software. Users are advised to review the advisory provided by Intel for mitigation strategies.

Affected Version(s)

Intel(R) Power Gadget software for macOS See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Nov 9, 2023