exploitDog

CVE-2023-22447

Опубликовано: 10 мая 2023

Источник: nvd

CVSS3: 2

CVSS3: 4.4

EPSS Низкий

Описание

Insertion of sensitive information into log file in the Open CAS software for Linux maintained by Intel before version 22.6.2 may allow a privileged user to potentially enable information disclosure via local access.

Ссылки

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00827.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00827.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:intel:open_cache_acceleration_software:*:*:*:*:*:linux:*:*

Версия до 22.6.2 (исключая)

EPSS

Процентиль: 29%

0.00105

Низкий

2 Low

CVSS3

4.4 Medium

CVSS3

Дефекты

CWE-532

CWE-532

Связанные уязвимости

GHSA-r9rq-9r78-p9gm

CVSS3: 2

github

больше 2 лет назад

Insertion of sensitive information into log file in the Open CAS software for Linux maintained by Intel before version 22.6.2 may allow a privileged user to potentially enable information disclosure via local access.

EPSS

Процентиль: 29%

0.00105

Низкий

2 Low

CVSS3

4.4 Medium

CVSS3

Дефекты

CWE-532

CWE-532