CVE-2021-0108

CWE-4274 documents4 sources
Severity
7.3HIGH
EPSS
0.2%
top 63.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Unite
Timeline
PublishedJun 9
Latest updateMay 24

Description

Uncontrolled search path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 1.3 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel_unite(r)_client_for_windowsbefore version 4.2.25031
NVDintel/unite< 4.2.25031

🔴Vulnerability Details

2
GHSA
GHSA-63fv-xmh7-4xvc: Uncontrolled search path in the Intel Unite(R) Client for Windows before version 42022-05-24
CVEList
CVE-2021-0108: Uncontrolled search path in the Intel Unite(R) Client for Windows before version 42021-06-09

📋Vendor Advisories

1
Chrome
Stable Channel Update for Desktop: CVE-2022-01062022-01-04
CVE-2021-0108 (HIGH CVSS 7.3) | Uncontrolled search path in the Int | cvebase.io