CVE-2023-43489

CWE-284Improper Access Control3 documents3 sources
Severity
6.8MEDIUM
EPSS
0.1%
top 73.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Computing Improvement Program
Timeline
PublishedAug 14

Description

Improper access control for some Intel(R) CIP software before version 2.4.10717 may allow an authenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5intel(r)_cip_softwarebefore version 2.4.10717

Patches

Patch: www.intel.com

🔴Vulnerability Details

2
CVEList
CVE-2023-43489: Improper access control for some Intel(R) CIP software before version 22024-08-14
GHSA
GHSA-wxp4-4x8f-5v4c: Improper access control for some Intel(R) CIP software before version 22024-08-14
CVE-2023-43489 (MEDIUM CVSS 6.8) | Improper access control for some In | cvebase.io