Lucene search
IntelCVELIST:CVE-2023-39412HistoryNov 14, 2023 - 7:04 p.m.
CVE-2023-39412
2023-11-1419:04:31
CWE-352
intel
www.cve.org
cross-site request forgery
intel
unison
privilege escalation
network access
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
9.1 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Cross-site request forgery in some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access.
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel Unison software",
"versions": [
{
"version": "See references",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
cve
cve
CVE-2023-39412
2023-11-14 19:15:30
nvd
nvd
CVE-2023-39412
2023-11-14 19:15:30
prion
prion
Cross site request forgery (csrf)
2023-11-14 19:15:00
intel
intel
Intel® Unison™ Software Advisory
2023-11-14 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
9.1 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Related for CVELIST:CVE-2023-39412