Lucene search
HistoryAug 11, 2023 - 3:15 a.m.
CVE-2023-23577
cve-2023-23577
uncontrolled search path
ite tech
infrared drivers
intel nuc
privilege escalation
7.3 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Uncontrolled search path element for some ITE Tech consumer infrared drivers before version 5.5.2.1 for Intelยฎ NUC may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelite_tech_consumer_infrared_driverRange<5.5.2.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| intel:ite_tech_consumer_infrared_driver | intel ite tech consumer infrared driver | lt | 5.5.2.1 |
CNA Affected
[
{
"vendor": "n/a",
"product": "ITE Tech consumer infrared drivers for Intel(R) NUC",
"versions": [
{
"version": "before version 5.5.2.1",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Privilege escalation
2023-08-11 03:15:00
intel
intel
Intelยฎ NUC CID Advisory
2023-08-08 00:00:00
cvelist
cvelist
CVE-2023-23577
2023-08-11 02:37:05
nvd
nvd
CVE-2023-23577
2023-08-11 03:15:18
7.3 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-23577