CVE-2023-22448

CWE-284 — Improper Access Control3 documents3 sources

Severity

7.2HIGH

EPSS

0.1%

top 69.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Unison Software

Timeline

PublishedNov 14

Description

Improper access control for some Intel Unison software may allow a privileged user to potentially enable escalation of privilege via network access.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:NExploitability: 0.7 | Impact: 5.2

Affected Packages2 packages

▶NVDintel/unison_software< 20.14.5683.0+2

▶CVEListV5intel_unison_softwareSee references

🔴Vulnerability Details

CVEList

CVE-2023-22448: Improper access control for some Intel Unison software may allow a privileged user to potentially enable escalation of privilege via network access↗2023-11-14

▶

GHSA

GHSA-rv6j-6cr4-gr5q: Improper access control for some Intel Unison software may allow a privileged user to potentially enable escalation of privilege via network access↗2023-11-14

▶