11 matches found
CVE-2023-46689
CVE-2023-46689 concerns the Intel Power Gadget software for macOS, affecting all versions, with an issue described as improper neutralization that may permit an authenticated user to escalate privileges via local access. The entry notes a local, low-attack-vector that requires no user interaction...
CVE-2023-46691
CVE-2023-46691 refers to a use-after-free in Intel Power Gadget for Windows (all versions) that could let an authenticated local user escalate privileges. The public details describe the affected component as Intel Power Gadget software for Windows and identify the underlying issue as a use-after...
CVE-2023-45846
Intel Power Gadget software for macOS (all versions) is affected by an incomplete cleanup issue that may allow an authenticated user to cause a local denial-of-service. This vulnerability is documented as CVE-2023-45846. The Red Hat and NVD entries concur on the affected product and impact. The I...
CVE-2023-45736
CVE-2023-45736 refers to insecure inherited permissions in Intel Power Gadget software for Windows (all versions) that may allow an authenticated user to escalate privileges via local access. Affected product: Intel® Power Gadget software for Windows prior to version 3.6.0. Root cause described a...
CVE-2023-42773
Intel Power Gadget software for Windows (all versions) is affected by CVE-2023-42773 due to improper neutralization, potentially allowing an authenticated local user to escalate privileges. Root cause: improper neutralization in the Windows implementation. Impact: privilege escalation with high s...
CVE-2023-40070
CVE-2023-40070 concerns Intel Power Gadget for macOS. The vulnerability is described as improper access control that could allow an authenticated local user to escalate privileges on all macOS versions. The related documents confirm the affected product is Intel Power Gadget software on macOS, wi...
CVE-2023-38581
CVE-2023-38581 is an Intel Power Gadget issue for Windows (all versions) where a buffer overflow could allow an authenticated local user to escalate privileges. The advisory confirms the vulnerability and notes Intel is discontinuing the product and recommends uninstalling Power Gadget. No exploi...
CVE-2023-45217
CVE-2023-45217 affects Intel Power Gadget for Windows (all versions prior to 3.6.0). The issue is improper access control that may let an authenticated local user escalate privileges. Intel and Red Hat advisories confirm the vulnerability and non-public fixes; Intel has issued a Product Discontin...
CVE-2023-41234
CVE-2023-41234 is a NULL pointer dereference in Intel® Power Gadget software for Windows, affecting all versions prior to 3.6.0. An authenticated user may cause a local denial of service. The issue is documented with Intel’s advisory (Intel® Power Gadget Software Advisory) and the CVE entry lists...
CVE-2023-45315
The CVE-2023-45315 issue affects Intel Power Gadget software for Windows (all versions). It is caused by improper initialization in the Power Gadget component, which may allow an authenticated user to trigger a local denial-of-service condition. The vulnerability is documented across multiple sou...
CVE-2023-38420
Intel Power Gadget for macOS (all versions) is affected by CVE-2023-38420 due to an improper conditions check in the software, allowing an authenticated local user to potentially disclose information. The NVD/Intel advisory lists the affected scope and notes a Product Discontinuation Notice with ...