First published: Tue Nov 14 2023(Updated: )
Improper access control in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel One Boot Flash Update | <14.1.31 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2023-29157.
The severity of CVE-2023-29157 is high with a severity value of 8.4.
The Intel One Boot Flash Update software versions before version 14.1.31 are affected by CVE-2023-29157.
An authenticated user can potentially enable escalation of privilege via local access due to improper access control in the Intel One Boot Flash Update software before version 14.1.31.
Yes, a fix is available for CVE-2023-29157. Users should update their Intel One Boot Flash Update software to version 14.1.31 or higher.