Lucene search
IntelCVE-2023-38570HistoryNov 14, 2023 - 7:15 p.m.
CVE-2023-38570
2023-11-1419:15:29
CWE-788
intel
web.nvd.nist.gov
18
cve-2023-38570
intel unison
memory access
privilege escalation
local access
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.001
Percentile
25.9%
Access of memory location after end of buffer for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelunison_softwareRange<20.14.5683.0
microsoftwindowsMatch-
Node
intelunison_softwareRange<20.14.4244
googleandroidMatch-
Node
intelunison_softwareRange<20.14.2.3053
appleiphone_osMatch-
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel Unison software",
"versions": [
{
"version": "See references",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
cvelist
cvelist
CVE-2023-38570
2023-11-14 19:04:31
vulnrichment
vulnrichment
CVE-2023-38570
2023-11-14 19:04:31
prion
prion
Privilege escalation
2023-11-14 19:15:00
nvd
nvd
CVE-2023-38570
2023-11-14 19:15:29
intel
intel
Intel® Unison™ Software Advisory
2023-11-14 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.001
Percentile
25.9%
Related for CVE-2023-38570