CVE-2023-23580

Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local access.

Published: May 10, 2023
Updated: May 19, 2023
CVE: CVE-2023-23580
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
intel / trace_analyzer_and_collector	-	2021.8.0
intel / oneapi_hpc_toolkit	-	2023.0.0

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00805.html

Vulnerability Database

289,871

CVE-2023-23580