5.27.06.0017

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2023-11-14

Updated: 2023-11-20

Summary

Improper access control in some Intel(R) Aptio* V UEFI Firmware Integrator Tools before version iDmiEdit-Linux-5.27.06.0017 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Aptio V Uefi Firmware Integrator Tools 5.27.03.0003 Intel Aptio V Uefi Firmware Integrator Tools 5.27.06.0017	2
OS	Microsoft Microsoft Windows -	1
OS	Linux Linux Linux Kernel -	1

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html