Lucene search

Ubuntu.comUB:CVE-2023-25080

HistoryNov 14, 2023 - 12:00 a.m.

CVE-2023-25080

2023-11-1400:00:00

ubuntu.com

cve-2023-25080

intel

openvino

information disclosure

local access

unix

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

Percentile

9.0%

JSON

Protection mechanism failure in some Intel® Distribution of OpenVINO
toolkit software before version 2023.0.0 may allow an authenticated user to
potentially enable information disclosure via local access.

References

launchpad.net/bugs/cve/CVE-2023-25080

nvd.nist.gov/vuln/detail/CVE-2023-25080

security-tracker.debian.org/tracker/CVE-2023-25080

www.cve.org/CVERecord?id=CVE-2023-25080

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00901.html

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

Percentile

9.0%

JSON

Related for UB:CVE-2023-25080