CVE-2023-32638
First published: Tue Nov 14 2023(Updated: )
Incorrect default permissions in some Intel Arc RGB Controller software before version 1.06 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Arc RGB Controller | <1.06 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-32638?
CVE-2023-32638 is a vulnerability in the Intel Arc RGB Controller software before version 1.06 that may allow an authenticated user to enable escalation of privilege via local access.
What is the severity of CVE-2023-32638?
The severity of CVE-2023-32638 is high, with a CVSS score of 7.8.
How can an authenticated user exploit CVE-2023-32638?
An authenticated user can exploit CVE-2023-32638 by leveraging incorrect default permissions in the Intel Arc RGB Controller software before version 1.06 to enable escalation of privilege via local access.
Which versions of Intel Arc RGB Controller software are affected by CVE-2023-32638?
Versions of Intel Arc RGB Controller software before version 1.06 are affected by CVE-2023-32638.
Is there a fix available for CVE-2023-32638?
Yes, the fix for CVE-2023-32638 is to update the Intel Arc RGB Controller software to version 1.06 or later.
- collector/nvd-api
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel arc rgb controller