CVE-2024-23312

CVSS 5.4 MEDIUMEPSS 0.2%CWE-427

Uncontrolled search path for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

n/a · Intel(R) Binary Configuration Tool software for Windows

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01138.html