How severe is CVE-2023-33870?

CVE-2023-33870 has a CVSS v3 score of 6.7 (MEDIUM).

CVE-2023-33870

Name: ethernet_connections_boot_utility\,_preboot_images\,_and_efi_drivers
Author: intel

6.7MEDIUM

Insecure inherited permissions in some Intel(R) Ethernet tools and driver install software may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2/14/2024Updated: 11/21/2024

Description

Insecure inherited permissions in some Intel(R) Ethernet tools and driver install software may allow an authenticated user to potentially enable escalation of privilege via local access.

AI AnalysisPowered by AI

Affected Products

inteladministrative_tools_for_intel_network_adapters

intelethernet_connections_boot_utility\,_preboot_images\,_and_efi_drivers

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00993.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00993.html
Vendor Advisory