CVE-2023-40156

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Feb 14, 2024

CWE ID 427

Summary

CVE-2023-40156 is a vulnerability affecting some Intel(R) SSU software versions prior to 3.0.0.2. This issue involves an uncontrolled search path element that can be exploited by authenticated users, potentially enabling privilege escalation through local access. The vulnerability could allow attackers to gain elevated system privileges, posing a significant security risk. Intel has released a patch to address this issue, and users are strongly encouraged to update their software to the latest version to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/srihpE
https://www.cve.org/CVERecord?id=CVE-2023-40156
https://nvd.nist.gov/vuln/detail/CVE-2023-40156

Back to Vulnerability Database

CVE-2023-40156

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations