Intel Power Gadget vulnerabilities

8 known vulnerabilities affecting intel/power_gadget.

Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2023-45736HIGHCVSS 7.8fixed in 3.6.02024-05-16
CVE-2023-45736 [MEDIUM] CWE-277 CVE-2023-45736: Insecure inherited permissions in Intel(R) Power Gadget software for Windows all versions may allow Insecure inherited permissions in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-42773HIGHCVSS 7.8fixed in 3.6.02024-05-16
CVE-2023-42773 [HIGH] CWE-707 CVE-2023-42773: Improper neutralization in Intel(R) Power Gadget software for Windows all versions may allow an auth Improper neutralization in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-45217HIGHCVSS 7.8fixed in 3.6.02024-05-16
CVE-2023-45217 [HIGH] CWE-284 CVE-2023-45217: Improper access control in Intel(R) Power Gadget software for Windows all versions may allow an auth Improper access control in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-46689HIGHCVSS 7.8fixed in 3.7.02024-05-16
CVE-2023-46689 [HIGH] CWE-707 CVE-2023-46689: Improper neutralization in Intel(R) Power Gadget software for macOS all versions may allow an authen Improper neutralization in Intel(R) Power Gadget software for macOS all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-46691HIGHCVSS 7.8fixed in 3.6.02024-05-16
CVE-2023-46691 [HIGH] CWE-416 CVE-2023-46691: Use after free in Intel(R) Power Gadget software for Windows all versions may allow an authenticated Use after free in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-45846MEDIUMCVSS 5.5fixed in 3.6.02024-05-16
CVE-2023-45846 [MEDIUM] CWE-459 CVE-2023-45846: Incomplete cleanup in Intel(R) Power Gadget software for macOS all versions may allow an authenticat Incomplete cleanup in Intel(R) Power Gadget software for macOS all versions may allow an authenticated user to potentially enable denial of service via local access.
nvd
CVE-2023-45315MEDIUMCVSS 5.5fixed in 3.6.02024-05-16
CVE-2023-45315 [MEDIUM] CWE-665 CVE-2023-45315: Improper initialization in some Intel(R) Power Gadget software for Windwos all versions may allow an Improper initialization in some Intel(R) Power Gadget software for Windwos all versions may allow an authenticated user to potentially enable denial of service via local access.
nvd
CVE-2023-41234MEDIUMCVSS 5.5fixed in 3.6.02024-05-16
CVE-2023-41234 [MEDIUM] CWE-476 CVE-2023-41234: NULL pointer dereference in Intel(R) Power Gadget software for Windows all versions may allow an aut NULL pointer dereference in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable denial of service via local access.
nvd