Intel Unite vulnerabilities

CVE-2023-40161 [MEDIUM] CWE-284 CVE-2023-40161: Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may allow an Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-25182 [MEDIUM] CWE-427 CVE-2023-25182: Uncontrolled search path element in the Intel(R) Unite(R) Client software for Mac before version 4.2 Uncontrolled search path element in the Intel(R) Unite(R) Client software for Mac before version 4.2.11 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-25773 [HIGH] CWE-284 CVE-2023-25773: Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4 Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4.2.34962 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-32609 [MEDIUM] CWE-284 CVE-2023-32609: Improper access control in the Intel Unite(R) android application before version 4.2.3504 may allow Improper access control in the Intel Unite(R) android application before version 4.2.3504 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-33963 [MEDIUM] CWE-276 CVE-2022-33963: Incorrect default permissions in the software installer for Intel(R) Unite(R) Client software for Wi Incorrect default permissions in the software installer for Intel(R) Unite(R) Client software for Windows before version 4.2.34870 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-32576 [MEDIUM] CWE-427 CVE-2022-32576: Uncontrolled search path in the Intel(R) Unite(R) Plugin SDK before version 4.2 may allow an authent Uncontrolled search path in the Intel(R) Unite(R) Plugin SDK before version 4.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-25179 [MEDIUM] CWE-400 CVE-2023-25179: Uncontrolled resource consumption in the Intel(R) Unite(R) android application before Release 17 may Uncontrolled resource consumption in the Intel(R) Unite(R) android application before Release 17 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2023-23573 [MEDIUM] CWE-284 CVE-2023-23573: Improper access control in the Intel(R) Unite(R) android application before Release 17 may allow a p Improper access control in the Intel(R) Unite(R) android application before Release 17 may allow a privileged user to potentially enable information disclosure via local access.

CVE-2021-0112 [HIGH] CWE-428 CVE-2021-0112: Unquoted service path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an Unquoted service path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.

CVE-2021-0098 [HIGH] CVE-2021-0098: Improper access control in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow Improper access control in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.

CVE-2021-0102 [HIGH] CWE-732 CVE-2021-0102: Insecure inherited permissions in the Intel Unite(R) Client for Windows before version 4.2.25031 may Insecure inherited permissions in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.

CVE-2021-0108 [HIGH] CWE-427 CVE-2021-0108: Uncontrolled search path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow Uncontrolled search path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.

CVE-2020-0575 [MEDIUM] CVE-2020-0575: Improper buffer restrictions in the Intel(R) Unite Client for Windows* before version 4.2.13064 may Improper buffer restrictions in the Intel(R) Unite Client for Windows* before version 4.2.13064 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2019-0172 [CRITICAL] CVE-2019-0172: A logic issue in Intel Unite(R) Client for Android prior to version 4.0 may allow a remote attacker A logic issue in Intel Unite(R) Client for Android prior to version 4.0 may allow a remote attacker to potentially enable escalation of privilege via network access.

CVE-2019-0132 [HIGH] CVE-2019-0132: Data Corruption in Intel Unite(R) Client before version 3.3.176.13 may allow an unauthenticated user Data Corruption in Intel Unite(R) Client before version 3.3.176.13 may allow an unauthenticated user to potentially cause a denial of service via network access.

CVE-2019-0101 [CRITICAL] CVE-2019-0101: Authentication bypass in the Intel Unite(R) solution versions 3.2 through 3.3 may allow an unauthent Authentication bypass in the Intel Unite(R) solution versions 3.2 through 3.3 may allow an unauthenticated user to potentially enable escalation of privilege to the Intel Unite(R) Solution administrative portal via network access.

CVE-2017-5738 [CRITICAL] CWE-200 CVE-2017-5738: Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1.41 Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1.41.18 and 3.1.45.26 allows an attacker with network access to cause a denial of service and/or information disclosure.