HIGH✓ PATCH🇬🇧 English

CVE-2023-24592

CVSS 7.3v3.1pub. 2023-11-14upd. 2024-11-21

Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
  • Intel Advisor

    APP
    Intel
    < 2023.1
  • Intel Inspector

    APP
    Intel
    < 2023.1
  • Intel Mpi Library

    APP
    Intel
    < 2023.1
  • Intel Oneapi Base Toolkit

    APP
    Intel
    < 2023.1
  • Intel Oneapi Hpc Toolkit

    APP
    Intel
    < 2023.1
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Path Traversal
CWE
Referencje

Powiązane podatności

CVE-2023-35121HIGH7.8ten sam produkt

Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) on...

CVE-2023-30763HIGH7.2ten sam produkt

Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a privileged user to ...

CVE-2023-23569HIGH7.8ten sam produkt

Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 pu...

CVE-2022-21128HIGH7.8ten sam produkt

Insufficient control flow management in the Intel(R) Advisor software before version 7.6.0.37 may allow an aut...

CVE-2021-33129HIGH7.8ten sam produkt

Incorrect default permissions in the software installer for the Intel(R) Advisor before version 2021.4.0 may a...