exploitDog

CVE-2023-32283

Опубликовано: 14 нояб. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Insertion of sensitive information into log file in some Intel(R) On Demand software before versions 1.16.2, 2.1.1, 3.1.0 may allow an authenticated user to potentially enable information disclosure via local access.

Ссылки

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00914.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00914.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:intel:on_demand:1.16.1.1:*:*:*:*:*:*:*

cpe:2.3:a:intel:on_demand:2.1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:intel:on_demand:3.0.1.3:*:*:*:*:*:*:*

EPSS

Процентиль: 27%

0.00096

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-532

CWE-532

Связанные уязвимости

GHSA-w369-f878-vgmj

CVSS3: 5.5

github

около 2 лет назад

Insertion of sensitive information into log file in some Intel(R) On Demand software before versions 1.16.2, 2.1.1, 3.1.0 may allow an authenticated user to potentially enable information disclosure via local access.

EPSS

Процентиль: 27%

0.00096

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-532

CWE-532