CVE-2023-29165

CWE-4283 documents3 sources
Severity
7.3HIGH
EPSS
0.1%
top 71.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Intel ARC A GraphicsIntel Iris XE Graphics
Timeline
PublishedNov 14

Description

Unquoted search path or element in some Intel(R) Arc(TM) Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5intel(r)_arc(tm)_control_softwarebefore version 1.73.5335.2
NVDintel/arc_a_graphics< 31.0.101.4255
NVDintel/iris_xe_graphics< 31.0.101.4255

🔴Vulnerability Details

2
GHSA
GHSA-r4ch-3qw4-35q9: Unquoted search path or element in some Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows drivers before version 312023-11-14
CVEList
CVE-2023-29165: Unquoted search path or element in some Intel(R) Arc(TM) Control software before version 12023-11-14
CVE-2023-29165 (HIGH CVSS 7.3) | Unquoted search path or element in | cvebase.io