Insecure inherited permissions in the installer for some Intel Server Configuration Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00925.html | Vendor Advisory |
Configurations
History
21 Nov 2023, 19:57
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-732 | |
CPE | cpe:2.3:a:intel:server_configuration_utility:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Intel server Configuration Utility
Intel |
|
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00925.html - Vendor Advisory |
14 Nov 2023, 19:30
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-14 19:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-34997
Mitre link : CVE-2023-34997
CVE.ORG link : CVE-2023-34997
JSON object : View
Products Affected
intel
- server_configuration_utility