CVE-2023-25944

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 11, 2023
Updated: Nov 7, 2023
CWE ID 427

Summary

CVE-2023-25944 is a vulnerability affecting some Intel(R) VCUST Tool software versions downloaded before February 3rd, 2023. This issue involves an uncontrolled search path element, which can potentially enable an authenticated user to escalate privileges through local access. By manipulating the search path, an attacker could gain elevated permissions, posing a significant risk to the affected system's security. Users are encouraged to update their software to mitigate this vulnerability and secure their systems against potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share