Current characterized errata are available on request. Intel products and services described may contain design defects or errors known as errata, which may cause the product to deviate from published specifications. Intel provides these materials as-is, with no express or implied warranties.Īll products, dates, and figures specified are preliminary based on current expectations, and are subject to change without notice. Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are deployed. Intel would like to thank Marius Gabriel Mihai for reporting this issue and working with us on coordinated disclosure. Updates are available for download at this location: Intel recommends updating Intel® USB 3.0 eXtensible Host Controller Driver to 5.0.4.43v2 or later. Intel® USB 3.0 eXtensible Host Controller Driver for Microsoft Windows* 7 before version 5.0.4.43v2. Vulnerability Details:ĭescription: Code injection vulnerability in the installer for Intel(R) USB 3.0 eXtensible Host Controller Driver for Microsoft Windows* 7 before version 5.0.4.43v2 may allow a user to potentially enable escalation of privilege via local access.ĬVSS Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H Affected Products: Intel is releasing software updates to mitigate this potential vulnerability.
A potential security vulnerability in the Intel® USB 3.0 eXtensible Host Controller Driver may allow escalation of privilege.
0 kommentar(er)
