CVE-2023-32272
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-32272 is a vulnerability affecting some Intel NUC Pro Software Suite Configuration Tool software installers before version 3.0.0.6. An authenticated user can exploit this uncontrolled search path issue to potentially trigger a denial of service attack via local access. The vulnerability allows the attacker to manipulate the installation process and access unintended files or directories, which can lead to system instability or crashes, resulting in a denial of service condition. Intel urges users to update their software to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Intel Corp.