CVE-2023-32646

CWE-4272 documents2 sources
Severity
7.3HIGH
EPSS
0.1%
top 75.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Virtual Raid ON CPU
Timeline
PublishedFeb 14

Description

Uncontrolled search path element in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel(r)_vroc_softwarebefore version 8.0.8.1001
NVDintel/virtual_raid_on_cpu< 8.0.8.1001

🔴Vulnerability Details

1
CVEList
CVE-2023-32646: Uncontrolled search path element in some Intel(R) VROC software before version 82024-02-14
CVE-2023-32646 (HIGH CVSS 7.3) | Uncontrolled search path element in | cvebase.io