Stack-Based Buffer Overflow in Intel Trace Analyzer and Collector Software
CVE-2023-23569

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Trace Analyzer And Collector Software
Vendor: CVE Published:; 10 May 2023

What is CVE-2023-23569?

A stack-based buffer overflow vulnerability exists in Intel Trace Analyzer and Collector software prior to version 2021.8.0. This flaw may allow an authenticated user to potentially escalate privileges through local access, thereby posing a significant security risk to affected systems. It is imperative for users to update their software to the latest version to mitigate this vulnerability and protect sensitive data.

Affected Version(s)

Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Feb 1, 2023