Vulnerabilities > CVE-2023-26592 - Deserialization of Untrusted Data vulnerability in Intel Thunderbolt DCH Driver 1.41.1054.0/72

CVSS 3.8 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

local

low complexity

intel

CWE-502

NVD

Published: 2024-02-14

Updated: 2024-10-10

Summary

Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial of service via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Thunderbolt DCH Driver - Intel Thunderbolt DCH Driver 1.41.1054.0 Intel Thunderbolt DCH Driver 72	3

Common Weakness Enumeration (CWE)

CWE-502 - Deserialization of Untrusted Data

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00851.html