Lucene search
HistoryAug 11, 2023 - 3:15 a.m.
CVE-2023-28823
intel
oneapi toolkit
uncontrolled search path
privilege escalation
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
9.0%
Uncontrolled search path in some Intelยฎ oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
inteladvisor_for_oneapiRange<2023.1
ORintelcpu_runtime_for_opencl_applicationsRange<2023.1
ORinteldistribution_for_python_programming_languageRange<2023.1
ORinteldpc\+\+_compatibility_toolRange<2023.1
ORintelembree_ray_tracing_kernel_libraryRange<2023.1
ORintelfortran_compilerRange<2023.1
ORintelimplicit_spmd_program_compilerRange<1.19.1
ORintelinspector_for_oneapiRange<2023.1
ORintelintegrated_performance_primitivesRange<2021.8
ORintelipp_cryptographyRange<2021.7.0
ORintelmpi_libraryRange<2021.9.0
ORinteloneapi_base_toolkitRange<2023.1
ORinteloneapi_data_analytics_libraryRange<2023.1
ORinteloneapi_deep_neural_network_libraryRange<2023.1
ORinteloneapi_dpc\+\+\/c\+\+_compilerRange<2023.1
ORinteloneapi_dpc\+\+_library_\(onedpl\)Range<2022.1
ORinteloneapi_hpc_toolkitRange<2023.1
ORinteloneapi_iot_toolkitRange<2023.1
ORinteloneapi_math_kernel_libraryRange<2023.1
ORinteloneapi_rendering_toolkitRange<2023.1
ORinteloneapi_threading_building_blocksRange<2021.9.0
ORinteloneapi_toolkit_and_component_software_installerRange<4.3.1.493
ORinteloneapi_video_processing_libraryRange<2023.1
ORintelopen_image_denoiseRange<1.4.3
ORintelopen_volume_kernel_libraryRange<2023.1
ORintelosprayRange<2023.1
ORintelospray_studioRange<2023.1
ORinteltrace_analyzer_and_collectorRange<2021.9.0
ORintelvtune_profiler_for_oneapiRange<2023.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | advisor_for_oneapi | * | cpe:2.3:a:intel:advisor_for_oneapi:*:*:*:*:*:*:*:* |
| intel | cpu_runtime_for_opencl_applications | * | cpe:2.3:a:intel:cpu_runtime_for_opencl_applications:*:*:*:*:*:*:*:* |
| intel | distribution_for_python_programming_language | * | cpe:2.3:a:intel:distribution_for_python_programming_language:*:*:*:*:*:*:*:* |
| intel | dpc\+\+_compatibility_tool | * | cpe:2.3:a:intel:dpc\+\+_compatibility_tool:*:*:*:*:*:*:*:* |
| intel | embree_ray_tracing_kernel_library | * | cpe:2.3:a:intel:embree_ray_tracing_kernel_library:*:*:*:*:*:*:*:* |
| intel | fortran_compiler | * | cpe:2.3:a:intel:fortran_compiler:*:*:*:*:*:*:*:* |
| intel | implicit_spmd_program_compiler | * | cpe:2.3:a:intel:implicit_spmd_program_compiler:*:*:*:*:*:*:*:* |
| intel | inspector_for_oneapi | * | cpe:2.3:a:intel:inspector_for_oneapi:*:*:*:*:*:*:*:* |
| intel | integrated_performance_primitives | * | cpe:2.3:a:intel:integrated_performance_primitives:*:*:*:*:*:*:*:* |
| intel | ipp_cryptography | * | cpe:2.3:a:intel:ipp_cryptography:*:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2023-08-11 03:15:00
cve
cve
CVE-2023-28823
2023-08-11 03:15:26
cvelist
cvelist
CVE-2023-28823
2023-08-11 02:37:17
intel
intel
Intelยฎ oneAPI Toolkit and Component Software Installers Advisory
2023-08-08 00:00:00
nessus
nessus
Oracle Database Server (Apr 2024 CPU)
2024-04-18 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2023-28823