Lucene search
HistoryNov 14, 2023 - 7:15 p.m.
CVE-2023-39412
cve-2023-39412
cross-site request forgery
intel unison
privilege escalation
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Cross-site request forgery in some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access.
Affected configurations
Node
intelunison_softwareRange<20.14.5683.0
microsoftwindowsMatch-
Node
intelunison_softwareRange<20.14.4244
googleandroidMatch-
Node
intelunison_softwareRange<20.14.2.3053
appleiphone_osMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| intel:unison_software | intel unison software | lt | 20.14.5683.0 |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel Unison software",
"versions": [
{
"version": "See references",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
cvelist
cvelist
CVE-2023-39412
2023-11-14 19:04:31
nvd
nvd
CVE-2023-39412
2023-11-14 19:15:30
prion
prion
Cross site request forgery (csrf)
2023-11-14 19:15:00
intel
intel
Intel® Unison™ Software Advisory
2023-11-14 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Related for CVE-2023-39412