Lucene search
IntelCVE-2023-25772HistoryMay 10, 2023 - 2:15 p.m.
CVE-2023-25772
2023-05-1014:15:32
CWE-20
intel
web.nvd.nist.gov
15
cve-2023-25772
improper input validation
intel retail edge
mobile application
android
dos
denial of service
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
5.2
Confidence
High
EPSS
0
Percentile
9.0%
Improper input validation in the Intel® Retail Edge Mobile Android application before version 3.0.301126-RELEASE may allow an authenticated user to potentially enable denial of service via local access.
Affected configurations
Node
intelretail_edge_programRange<3.0.301126android
ORintelretail_edge_programRange<3.4.7iphone_os
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | retail_edge_program | * | cpe:2.3:a:intel:retail_edge_program:*:*:*:*:*:android:*:* |
| intel | retail_edge_program | * | cpe:2.3:a:intel:retail_edge_program:*:*:*:*:*:iphone_os:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) Retail Edge Mobile Android application",
"versions": [
{
"version": "before version 3.0.301126-RELEASE",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2023-25772
2023-05-10 14:15:32
cvelist
cvelist
CVE-2023-25772
2023-05-10 13:40:57
prion
prion
Input validation
2023-05-10 14:15:00
intel
intel
Intel® Retail Edge Mobile App Advisory
2023-05-09 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
5.2
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-25772