Lucene search
HistoryNov 14, 2023 - 7:15 p.m.
CVE-2023-34430
uncontrolled search path
intel battery life diagnostic tool
privilege escalation
local access
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Uncontrolled search path in some Intel Battery Life Diagnostic Tool software before version 2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelbattery_life_diagnostic_toolRange<2.2.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | battery_life_diagnostic_tool | * | cpe:2.3:a:intel:battery_life_diagnostic_tool:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-34430
2023-11-14 19:05:02
vulnrichment
vulnrichment
CVE-2023-34430
2023-11-14 19:05:02
prion
prion
Design/Logic Flaw
2023-11-14 19:15:00
cve
cve
CVE-2023-34430
2023-11-14 19:15:28
intel
intel
Intelยฎ Battery Life Diagnostic Tool Software Advisory
2023-11-14 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2023-34430