Vulnerability Details CVE-2023-33870
Insecure inherited permissions in some Intel(R) Ethernet tools and driver install software may allow an authenticated user to potentially enable escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.5%
CVSS Severity
CVSS v3 Score 6.7
References
Products affected by CVE-2023-33870
-
_and_efi_drivers:*
-
_preboot_images
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:-
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:1.4.0.15
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:1.4.0.21
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:22.10
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:23.4
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:23.5
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:23.5.1
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:23.5.2
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:24.1
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:24.2
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:24.3
-
cpe:2.3:a:intel:administrative_tools_for_intel_network_adapters:27.6
-
cpe:2.3:a:intel:ethernet_connections_boot_utility