CVE-2023-25182

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 11, 2023

Updated: Nov 7, 2023

CWE ID 427

Summary

CVE-2023-25182 is a vulnerability affecting the Intel(R) Unite(R) Client software for Mac versions prior to 4.2.11. This issue involves an uncontrolled search path element, which can potentially be exploited by authenticated users to gain elevated privileges through local access. By manipulating the search path, an attacker could execute commands with higher permissions, leading to a significant escalation of privilege. This vulnerability poses a risk to Mac systems running the Intel Unite Client software and emphasizes the importance of keeping software up to date to mitigate security threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sRbphP
https://www.cve.org/CVERecord?id=CVE-2023-25182
https://nvd.nist.gov/vuln/detail/CVE-2023-25182

Back to Vulnerability Database

CVE-2023-25182

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations