CVE-2017-5682

Опубликовано: 28 фев. 2017

Источник: nvd

CVSS3: 7.3

CVSS2: 9.3

EPSS Низкий

Описание

Intel PSET Application Install wrapper of Intel Parallel Studio XE, Intel System Studio, Intel VTune Amplifier, Intel Inspector, Intel Advisor, Intel MPI Library, Intel Trace Analyzer and Collector, Intel Integrated Performance Primitives, Cryptography for Intel Integrated Performance Primitives, Intel Math Kernel Library, Intel Data Analytics Acceleration Library, and Intel Threading Building Blocks before 2017 Update 2 allows an attacker to launch a process with escalated privileges.

Ссылки

http://www.securityfocus.com/bid/96482
Third Party Advisory
VDB Entry
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00070&languageid=en-fr
Vendor Advisory
http://www.securityfocus.com/bid/96482
Third Party Advisory
VDB Entry
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00070&languageid=en-fr
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:intel:advisor:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:cryptography_for_intel_integrated_performance_primitives:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:data_analytics_acceleration_library:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:inspector:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:integrated_performance_primitives:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:math_kernel_library:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:mpi_library:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:parallel_studio_xe:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:system_studio:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:threading_building_blocks:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:trace_analyzer_and_collector:2017:*:*:*:*:*:*:*

cpe:2.3:a:intel:vtune_amplifier:2017:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00109

Низкий

7.3 High

CVSS3

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-5w4p-vh66-47f5