Intel MAS Software Vulnerability Could Lead to Denial of Service
CVE-2023-36490

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Mas Software
Vendor: CVE Published:; 14 February 2024

What is CVE-2023-36490?

Improper initialization in Intel's Management Application Server (MAS) software prior to version 2.3 could allow an authenticated user to perform actions that result in a denial of service. This vulnerability requires local access and could lead to significant operational disruptions. Users of affected versions should prioritize updating their software to ensure security and functionality. For full details and mitigations, refer to the relevant Intel security advisory.

Affected Version(s)

Intel(R) MAS software before version 2.3

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2024
Vulnerability Reserved
Aug 2, 2023