Lucene search
IntelCVE-2023-40070HistoryMay 16, 2024 - 9:15 p.m.
CVE-2023-40070
2024-05-1621:15:53
CWE-1220
CWE-284
intel
web.nvd.nist.gov
33
cve-2023-40070
access control
intel power gadget
macos
escalation of privilege
nvd
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
Improper access control in some Intel® Power Gadget software for macOS all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelpower_gadget_software
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | power_gadget_software | * | cpe:2.3:a:intel:power_gadget_software:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) Power Gadget software for macOS",
"versions": [
{
"version": "See references",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2023-40070
2024-05-16 21:15:53
cvelist
cvelist
CVE-2023-40070
2024-05-16 20:47:18
vulnrichment
vulnrichment
CVE-2023-40070
2024-05-16 20:47:18
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-40070