CVE-2023-32272

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 19, 2024
Updated: Jan 30, 2024
CWE ID 427

Summary

CVE-2023-32272 is a vulnerability affecting some Intel NUC Pro Software Suite Configuration Tool software installers before version 3.0.0.6. An authenticated user can exploit this uncontrolled search path issue to potentially trigger a denial of service attack via local access. The vulnerability allows the attacker to manipulate the installation process and access unintended files or directories, which can lead to system instability or crashes, resulting in a denial of service condition. Intel urges users to update their software to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share