Memory Access Vulnerability in Intel Unison Software
CVE-2023-38570

5.3MEDIUM

Key Information:

Vendor: Intel
Status: Intel Unison Software
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-38570?

A memory access vulnerability exists in the Intel Unison software, where an authenticated user may exploit the software's handling of memory locations beyond allocated buffers. This flaw could lead to potential privilege escalation under local access. Users of the affected version should review the security advisory for further details and recommended mitigations.

Affected Version(s)

Intel Unison software See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Aug 1, 2023