DEPRECATED: Improper Sanitization of Custom Special Characters

CVE-2023-27308

Medium

4.6/10

Summary

Improper buffer restrictions in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow a privileged user to potentially enable escalation of privilege via local access.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: LOW
Scope: CHANGED
User Interaction: NONE
Privileges Required: HIGH
Confidentiality Impact: NONE
Availability Impact: LOW

CWE-92 - DEPRECATED: Improper Sanitization of Custom Special Characters

This entry has been deprecated. It originally came from PLOVER, which sometimes defined "other" and "miscellaneous" categories in order to satisfy exhaustiveness requirements for taxonomies. Within the context of CWE, the use of a more abstract entry is preferred in mapping situations. CWE-75 is a more appropriate mapping.

References

Advisory Timeline

Published Feb 14, 2024

DEPRECATED: Improper Sanitization of Custom Special Characters

CVE-2023-27308

Summary

CWE-92 - DEPRECATED: Improper Sanitization of Custom Special Characters

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS