CVE-2024-35245Uncontrolled Search Path Element in Proset Wireless Wifi Software FOR Windows

CWE-427Uncontrolled Search Path Element3 documents3 sources
Severity
5.4MEDIUMNVD
EPSS
0.1%
top 79.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Proset Wireless Wifi Software FOR Windows
Timeline
PublishedNov 13

Description

Uncontrolled search path element in some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.60 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages1 packages

CVEListV5intel_proset/wireless_wifi_software_for_windowsbefore version 23.60

🔴Vulnerability Details

2
CVEList
CVE-2024-35245: Uncontrolled search path element in some Intel(R) PROSet/Wireless WiFi software for Windows before version 232024-11-13
GHSA
GHSA-2x4x-xw83-gw6x: Uncontrolled search path element in some Intel(R) PROSet/Wireless WiFi software for Windows before version 232024-11-13
CVE-2024-35245 — Uncontrolled Search Path Element | cvebase