2.2.0.03942

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2019-08-19

Updated: 2020-08-24

Summary

Insufficient access control in hardware abstraction in SEMA driver for Intel(R) Computing Improvement Program before version 2.4.0.04733 may allow an authenticated user to potentially enable escalation of privilege, denial of service or information disclosure via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Computing Improvement Program - Intel Computing Improvement Program 2.1.03638 Intel Computing Improvement Program 2.2.0.03942	3

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00283.html