First published: Tue Nov 14 2023(Updated: )
Uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
|Affected Software||Affected Version||How to fix|
|Intel Quickassist Technology Library||=22.07.1|
|Intel Quickassist Technology||>=1.0<1.10|
|Intel Quickassist Technology Firmware|
|Intel Quickassist Technology||>=2.0<2.04|
CVE-2023-28740 is a vulnerability related to uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0.
The severity of CVE-2023-28740 is 7.8 (high).
An authenticated user may potentially enable escalation of privilege via local access by exploiting CVE-2023-28740.
Intel Quickassist Technology Library version 2.0 before 2.0.4 is affected by CVE-2023-28740.
You can find more information about CVE-2023-28740 at the following reference link: [intel.com](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html).