Potential Information Disclosure via Local Access
CVE-2023-27502

3.3LOW

Key Information:

Vendor

Intel
Status
Intel(r) Local Manageability Service Software
Vendor
CVE Published:
14 March 2024

What is CVE-2023-27502?

An information disclosure vulnerability exists within Intel Local Manageability Service software prior to version 2316.5.1.2. This flaw allows an authenticated user to potentially access sensitive information through improper logging practices. The insertion of sensitive information into log files can expose critical data if local access is achieved, heightening the risk of unauthorized information retrieval. Appropriate security measures are recommended to mitigate this risk and ensure that sensitive data is properly protected.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Intel(R) Local Manageability Service software before version 2316.5.1.2

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.