Lucene search
IntelCVE-2023-25779HistoryFeb 14, 2024 - 2:15 p.m.
CVE-2023-25779
2024-02-1414:15:43
CWE-427
intel
web.nvd.nist.gov
14
cve-2023-25779
intel
thunderbolt
dch
drivers
windows
privilege escalation
vulnerability
nvd
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Uncontrolled search path element in some Intel® Thunderbolt™ DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelthunderbolt\(tm\)_dch_drivers_for_windowsRange<88
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | thunderbolt\(tm\)_dch_drivers_for_windows | * | cpe:2.3:a:intel:thunderbolt\(tm\)_dch_drivers_for_windows:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) Thunderbolt(TM) DCH drivers for Windows",
"versions": [
{
"version": "before version 88",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
cvelist
cvelist
CVE-2023-25779
2024-02-14 13:37:40
prion
prion
Privilege escalation
2024-02-14 14:15:00
vulnrichment
vulnrichment
CVE-2023-25779
2024-02-14 13:37:40
nvd
nvd
CVE-2023-25779
2024-02-14 14:15:43
intel
intel
Intel® ThunderboltTM DCH Drivers for Windows Advisory
2024-02-13 00:00:00
hp
hp
Intel Thunderbolt DCH Drivers for Windows February 2024 Security Updates
2024-02-13 00:00:00
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for CVE-2023-25779