Lucene search

Ubuntu.comUB:CVE-2023-25080

HistoryNov 14, 2023 - 12:00 a.m.

CVE-2023-25080

2023-11-1400:00:00

ubuntu.com

cve-2023-25080

intel

openvino

information disclosure

local access

unix

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Protection mechanism failure in some Intel® Distribution of OpenVINO
toolkit software before version 2023.0.0 may allow an authenticated user to
potentially enable information disclosure via local access.

References

launchpad.net/bugs/cve/CVE-2023-25080

nvd.nist.gov/vuln/detail/CVE-2023-25080

security-tracker.debian.org/tracker/CVE-2023-25080

www.cve.org/CVERecord?id=CVE-2023-25080

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00901.html

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for UB:CVE-2023-25080