5.5
CVE-2023-23909
- EPSS 0.1%
- Veröffentlicht 10.05.2023 14:15:30
- Zuletzt bearbeitet 21.11.2024 07:47:04
- Quelle secure@intel.com
- CVE-Watchlists
- Unerledigt
LoginOut-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Intel ≫ Oneapi Hpc Toolkit Version < 2023.0.0
Intel ≫ Trace Analyzer And Collector Version < 2021.8.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.1% | 0.272 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
| secure@intel.com | 2.8 | 1.3 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.