Lucene search

K
cvelistIntelCVELIST:CVE-2023-26592
HistoryFeb 14, 2024 - 1:37 p.m.

CVE-2023-26592

2024-02-1413:37:47
CWE-502
intel
www.cve.org
cve-2023-26592
deserialization
untrusted data
intel
thunderbolt
dch drivers
windows
denial of service
local access

3.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Deserialization of untrusted data in some Intel® Thunderbolt™ DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial of service via local access.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) Thunderbolt(TM) DCH drivers for Windows",
    "versions": [
      {
        "version": "before version 88",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

3.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Related for CVELIST:CVE-2023-26592