Intel Setup And Configuration Software vulnerabilities
2 known vulnerabilities affecting intel/setup_and_configuration_software.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-22440HIGHCVSS 7.8≤ 2.1.92023-05-10
CVE-2023-22440 [HIGH] CWE-276 CVE-2023-22440: Incorrect default permissions in the Intel(R) SCS Add-on software installer for Microsoft SCCM all v
Incorrect default permissions in the Intel(R) SCS Add-on software installer for Microsoft SCCM all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2021-33107MEDIUMCVSS 4.6fixed in 12.22022-02-09
CVE-2021-33107 [MEDIUM] CWE-522 CVE-2021-33107: Insufficiently protected credentials in USB provisioning for Intel(R) AMT SDK before version 16.0.3,
Insufficiently protected credentials in USB provisioning for Intel(R) AMT SDK before version 16.0.3, Intel(R) SCS before version 12.2 and Intel(R) MEBx before versions 11.0.0.0012, 12.0.0.0011, 14.0.0.0004 and 15.0.0.0004 may allow an unauthenticated user to potentially enable information disclosure via physical access.
nvd