Lucene search
HistoryFeb 14, 2024 - 2:15 p.m.
CVE-2023-28745
cve-2023-28745
intel
qsfp+
configuration utility
software
vulnerability
privilege escalation
nvd
6.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Uncontrolled search path in Intelยฎ QSFP+ Configuration Utility software, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelserver_configuration_utility
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) QSFP+ Configuration Utility software",
"versions": [
{
"version": "all versions",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
intel
intel
Intelยฎ QSFP+ Configuration Utility Software Advisory
2024-02-13 00:00:00
prion
prion
Design/Logic Flaw
2024-02-14 14:15:00
nvd
nvd
CVE-2023-28745
2024-02-14 14:15:48
cvelist
cvelist
CVE-2023-28745
2024-02-14 13:38:11
6.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-28745