Main Vulnerability Database Vulnerabilities #VU72607

#VU72607 Insufficient Control Flow Management in Ethernet Controller Administrative Tools drivers for Windows - CVE-2022-27808

Published: February 27, 2023

Vulnerability identifier: #VU72607

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2022-27808

CWE-ID: CWE-691

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Ethernet Controller Administrative Tools drivers for Windows

Software vendor:
Intel

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insufficient control flow management, which leads to security restrictions bypass and privilege escalation.

Install updates from vendor's website.