Out-of-Bounds Write Vulnerability in Intel Trace Analyzer and Collector Software
CVE-2023-23910

3.9LOW

Key Information:

Vendor: Intel
Status: Intel(r) Trace Analyzer And Collector Software
Vendor: CVE Published:; 10 May 2023

Summary

A vulnerability exists in Intel(R) Trace Analyzer and Collector software prior to version 2021.8.0, where an authenticated user could exploit an out-of-bounds write condition. This could potentially allow them to escalate their privileges through local access, enabling unauthorized actions within the system.

Affected Version(s)

Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

3.9

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Feb 1, 2023