327 matches found
The vulnerability of the software for updating Intel Driver & Support Assistant (DSA) stems from deficiencies in access control mechanisms, allowing attackers to trigger a service failure.
The vulnerability of the software for updating Intel Driver & Support Assistant DSA is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the device driver update application, Intel Driver and Support Assistant, related to access control deficiencies, allows a hacker to escalate their privileges.
The vulnerability of the Intel Driver and Support Assistant application for updating device drivers is related to access control deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...
PT-2024-1872 · Intel · Intel Driver & Support Assistant
Name of the Vulnerable Software and Affected Versions: Intel Driver & Support Assistant versions prior to 23.4.33 Description: The issue is related to improper access control in Intel Driver & Support Assistant software, which may allow an authenticated user to potentially enable escalation of...
CVE-2023-28872
Support Assistant in NCP Secure Enterprise Client before 13.10 allows attackers to execute DLL files with SYSTEM privileges by creating a symbolic link from a %LOCALAPPDATA%\Temp\NcpSupport location...
CVE-2023-28872
Support Assistant in NCP Secure Enterprise Client before 13.10 allows attackers to execute DLL files with SYSTEM privileges by creating a symbolic link from a %LOCALAPPDATA%\Temp\NcpSupport location...
NCP Secure Enterprise Client Security Vulnerability
NCP Secure Enterprise Client is a VPN Virtual Private Network client application from NCP Germany. A security vulnerability exists in NCP Secure Enterprise Client versions prior to 13.10, which originates in Support Assistant that allows an attacker to execute DLL files with system privileges by...
CVE-2023-28872
Support Assistant in NCP Secure Enterprise Client before 13.10 allows attackers to execute DLL files with SYSTEM privileges by creating a symbolic link from a %LOCALAPPDATA%\Temp\NcpSupport location...
CVE-2023-28872
Support Assistant in NCP Secure Enterprise Client before 13.10 allows attackers to execute DLL files with SYSTEM privileges by creating a symbolic link from a %LOCALAPPDATA%\Temp\NcpSupport location...
The vulnerability of the DSA service in the Intel Driver & Support Assistant software allows a hacker to escalate their privileges and execute arbitrary code.
The vulnerability of the DSA service in the Intel Driver & Support Assistant software for updating drivers is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...
(0Day) Intel Driver & Support Assistant Link Following Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Intel Driver & Support Assistant. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-28868
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to delete arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28870
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts...
CVE-2023-28868
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to delete arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28869
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28870
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts...
CVE-2023-28868
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to delete arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28870
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts...
Design/Logic Flaw
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to read registry information of the operating system by creating a symbolic link...
Code injection
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link...
Code injection
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to delete arbitrary files on the operating system by creating a symbolic link...