Lucene search

[email protected]CVE-2023-28823

HistoryAug 11, 2023 - 3:15 a.m.

CVE-2023-28823

2023-08-1103:15:26

CWE-427

[email protected]

web.nvd.nist.gov

intel

oneapi toolkit

component software

installers

cve-2023-28823

nvd

security vulnerability

7.3 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Uncontrolled search path in some Intel® oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

NVD

Node

inteladvisor_for_oneapiRange<2023.1

intelcpu_runtime_for_opencl_applicationsRange<2023.1

inteldistribution_for_python_programming_languageRange<2023.1

inteldpc\+\+_compatibility_toolRange<2023.1

intelembree_ray_tracing_kernel_libraryRange<2023.1

intelfortran_compilerRange<2023.1

intelimplicit_spmd_program_compilerRange<1.19.1

intelinspector_for_oneapiRange<2023.1

intelintegrated_performance_primitivesRange<2021.8

intelipp_cryptographyRange<2021.7.0

intelmpi_libraryRange<2021.9.0

inteloneapi_base_toolkitRange<2023.1

inteloneapi_data_analytics_libraryRange<2023.1

inteloneapi_deep_neural_network_libraryRange<2023.1

inteloneapi_dpc\+\+\/c\+\+_compilerRange<2023.1

inteloneapi_dpc\+\+_library_\(onedpl\)Range<2022.1

inteloneapi_hpc_toolkitRange<2023.1

inteloneapi_iot_toolkitRange<2023.1

inteloneapi_math_kernel_libraryRange<2023.1

inteloneapi_rendering_toolkitRange<2023.1

inteloneapi_threading_building_blocksRange<2021.9.0

inteloneapi_toolkit_and_component_software_installerRange<4.3.1.493

inteloneapi_video_processing_libraryRange<2023.1

intelopen_image_denoiseRange<1.4.3

intelopen_volume_kernel_libraryRange<2023.1

intelosprayRange<2023.1

intelospray_studioRange<2023.1

inteltrace_analyzer_and_collectorRange<2021.9.0

intelvtune_profiler_for_oneapiRange<2023.1

CPENameOperatorVersion
intel:advisor_for_oneapiintel advisor for oneapilt2023.1
intel:cpu_runtime_for_opencl_applicationsintel cpu runtime for opencl applicationslt2023.1
intel:distribution_for_python_programming_languageintel distribution for python programming languagelt2023.1
intel:dpc\+\+_compatibility_toolintel dpc++ compatibility toollt2023.1
intel:embree_ray_tracing_kernel_libraryintel embree ray tracing kernel librarylt2023.1
intel:fortran_compilerintel fortran compilerlt2023.1
intel:implicit_spmd_program_compilerintel implicit spmd program compilerlt1.19.1
intel:inspector_for_oneapiintel inspector for oneapilt2023.1
intel:integrated_performance_primitivesintel integrated performance primitiveslt2021.8
intel:ipp_cryptographyintel ipp cryptographylt2021.7.0

CPE	Name	Operator	Version
intel:advisor_for_oneapi	intel advisor for oneapi	lt	2023.1
intel:cpu_runtime_for_opencl_applications	intel cpu runtime for opencl applications	lt	2023.1
intel:distribution_for_python_programming_language	intel distribution for python programming language	lt	2023.1
intel:dpc\+\+_compatibility_tool	intel dpc++ compatibility tool	lt	2023.1
intel:embree_ray_tracing_kernel_library	intel embree ray tracing kernel library	lt	2023.1
intel:fortran_compiler	intel fortran compiler	lt	2023.1
intel:implicit_spmd_program_compiler	intel implicit spmd program compiler	lt	1.19.1
intel:inspector_for_oneapi	intel inspector for oneapi	lt	2023.1
intel:integrated_performance_primitives	intel integrated performance primitives	lt	2021.8
intel:ipp_cryptography	intel ipp cryptography	lt	2021.7.0

Rows per page:

1-10 of 291

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) oneAPI Toolkit and component software installers",
    "versions": [
      {
        "version": "before version 4.3.1.493",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]