CVE-2023-35769
MEDIUMIntel Computing Improvement Program - Uncontrolled Search Path
Title source: ruleDescription
Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may allow an authenticated user to potentially enable escalation of privilege via local access.
Scores
CVSS v3
6.7
EPSS
0.0014
EPSS Percentile
34.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Classification
CWE
CWE-427
Status
published
Affected Products (1)
intel/computing_improvement_program
< 2.4.10577
Timeline
Published
Feb 14, 2024
Tracked Since
Feb 18, 2026