CVE-2023-25944
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Aug 11, 2023
Updated: Nov 7, 2023
CWE ID 427
Summary
CVE-2023-25944 is a vulnerability affecting some Intel(R) VCUST Tool software versions downloaded before February 3rd, 2023. This issue involves an uncontrolled search path element, which can potentially enable an authenticated user to escalate privileges through local access. By manipulating the search path, an attacker could gain elevated permissions, posing a significant risk to the affected system's security. Users are encouraged to update their software to mitigate this vulnerability and secure their systems against potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share