Lucene search
IntelCVE-2023-22447HistoryMay 10, 2023 - 2:15 p.m.
CVE-2023-22447
2023-05-1014:15:28
CWE-532
intel
web.nvd.nist.gov
16
cve-2023-22447
information disclosure
log file
intel
open cas
linux
nvd
CVSS3
4.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
4.2
Confidence
High
EPSS
0
Percentile
9.0%
Insertion of sensitive information into log file in the Open CAS software for Linux maintained by Intel before version 22.6.2 may allow a privileged user to potentially enable information disclosure via local access.
Affected configurations
Node
intelopen_cache_acceleration_softwareRange<22.6.2linux
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | open_cache_acceleration_software | * | cpe:2.3:a:intel:open_cache_acceleration_software:*:*:*:*:*:linux:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Open CAS software for Linux maintained by Intel",
"versions": [
{
"version": "before version 22.6.2",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Information disclosure
2023-05-10 14:15:00
cvelist
cvelist
CVE-2023-22447
2023-05-10 13:17:25
osv
osv
CVE-2023-22447
2023-05-10 14:15:28
intel
intel
Open CASย Advisory
2023-05-09 00:00:00
nvd
nvd
CVE-2023-22447
2023-05-10 14:15:28
CVSS3
4.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
4.2
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-22447