Lucene search
IntelVULNRICHMENT:CVE-2023-32646HistoryFeb 14, 2024 - 1:38 p.m.
CVE-2023-32646
2024-02-1413:38:02
CWE-427
intel
github.com
3
cve-2023-32646
intel vroc
uncontrolled search path
privilege escalation
local access
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Uncontrolled search path element in some Intel® VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:intel:virtual_raid_on_cpu:*:*:*:*:*:*:*:*"
],
"vendor": "intel",
"product": "virtual_raid_on_cpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "8.0.8.1001",
"versionType": "custom"
}
],
"defaultStatus": "unaffected"
}
]Related
cve
cve
CVE-2023-32646
2024-02-14 14:15:53
prion
prion
Privilege escalation
2024-02-14 14:15:00
nvd
nvd
CVE-2023-32646
2024-02-14 14:15:53
cvelist
cvelist
CVE-2023-32646
2024-02-14 13:38:02
hp
hp
Intel Virtual RAID on CPU (VROC) February 2024 Security Update
2024-02-13 00:00:00
intel
intel
Intel® VROC Software Advisory
2024-02-13 00:00:00
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2023-32646