CVE-2023-39432

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Feb 14, 2024

CWE ID 284

Summary

CVE-2023-39432 is a vulnerability affecting some Intel(R) Ethernet tools and driver install software. It involves an improper access control element that could allow an authenticated user to potentially escalate privileges through local access. This issue may enable attackers to gain elevated permissions, increasing the risk of data theft or unauthorized system changes. The affected versions of the software are prior to 28.2, and Intel has released patches to address this vulnerability. Users are strongly encouraged to update their software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sRbrto
https://www.cve.org/CVERecord?id=CVE-2023-39432
https://nvd.nist.gov/vuln/detail/CVE-2023-39432

Back to Vulnerability Database

CVE-2023-39432

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations