CVE-2023-34430

CWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 65.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Battery Life Diagnostic Tool
Timeline
PublishedNov 14

Description

Uncontrolled search path in some Intel Battery Life Diagnostic Tool software before version 2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel_battery_life_diagnostic_tool_softwarebefore version 2.2.1

🔴Vulnerability Details

2
GHSA
GHSA-39p9-mvxq-x2gf: Uncontrolled search path in some Intel Battery Life Diagnostic Tool software before version 22023-11-14
CVEList
CVE-2023-34430: Uncontrolled search path in some Intel Battery Life Diagnostic Tool software before version 22023-11-14
CVE-2023-34430 (HIGH CVSS 7.8) | Uncontrolled search path in some In | cvebase.io