Lucene search

IntelVULNRICHMENT:CVE-2023-45315

HistoryMay 16, 2024 - 8:47 p.m.

CVE-2023-45315

2024-05-1620:47:22

CWE-665

intel

github.com

cve-2023-45315

improper initialization

intel power gadget

windows

denial of service

authenticated user

local access

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper initialization in some Intel® Power Gadget software for Windwos all versions may allow an authenticated user to potentially enable denial of service via local access.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) Power Gadget software for Windwos",
    "versions": [
      {
        "version": "See references",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01037.html

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for VULNRICHMENT:CVE-2023-45315