Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:45881
HistoryMar 16, 2024 - 5:54 p.m.

Privilege Escalation

2024-03-1617:54:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
vulnerability
intel-microcode
privilege escalation
local access
protection mechanism

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

48.0%

intel-microcode is vulnerable to privilege escalation. The vulnerability is due to a failure in the protection mechanism, which may allow an attacker to potentially enable escalation of privileges via local access.

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

48.0%