Lucene search
HistoryAug 11, 2023 - 3:15 a.m.
CVE-2023-28385
cve-2023-28385
intel
nuc
pro software suite
windows
authorization
privilege escalation
security vulnerability
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Improper authorization in the Intelยฎ NUC Pro Software Suite for Windows before version 2.0.0.9 may allow a privileged user to potentially enable escalation of privilage via local access.
Affected configurations
Node
intelnuc_pro_software_suiteRange<2.0.0.9
| CPE | Name | Operator | Version |
|---|---|---|---|
| intel:next_unit_of_computing_firmware | intel next unit of computing firmware | lt | 2.0.0.9 |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) NUC Pro Software Suite for Windows",
"versions": [
{
"version": "before version 2.0.0.9",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Authorization
2023-08-11 03:15:00
intel
intel
Intelยฎ NUC Pro Software Suite Advisory
2023-08-08 00:00:00
nvd
nvd
CVE-2023-28385
2023-08-11 03:15:24
cvelist
cvelist
CVE-2023-28385
2023-08-11 02:37:13
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-28385