CVE-2023-29504
First published: Tue Nov 14 2023(Updated: )
Uncontrolled search path element in some Intel(R) RealSense(TM) Dynamic Calibration software before version 2.13.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Realsense D400 Series Dynamic Calibration Tool | <2.13.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-29504?
CVE-2023-29504 is a vulnerability in some Intel RealSense Dynamic Calibration software that allows an authenticated user to potentially enable escalation of privilege via local access.
What is the severity of CVE-2023-29504?
The severity of CVE-2023-29504 is high, with a severity value of 7.8.
Which software versions are affected by CVE-2023-29504?
Versions of Intel RealSense Dynamic Calibration software before version 2.13.1.0 are affected by CVE-2023-29504.
How can an authenticated user potentially exploit CVE-2023-29504?
An authenticated user can potentially exploit CVE-2023-29504 by manipulating the uncontrolled search path element in the affected software, enabling escalation of privilege via local access.
Is there a fix available for CVE-2023-29504?
Yes, the fix for CVE-2023-29504 is to upgrade to version 2.13.1.0 or later of the Intel RealSense Dynamic Calibration software.
- collector/mitre-cve
- collector/nvd-api
- vendor/intel
- canonical/intel realsense d400 series dynamic calibration tool