CVE-2023-36860

CWE-20Improper Input Validation3 documents3 sources
Severity
8.8HIGH
EPSS
0.2%
top 55.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Unison Software
Timeline
PublishedNov 14

Description

Improper input validation for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:NExploitability: 2.8 | Impact: 4.2

Affected Packages2 packages

NVDintel/unison_software< 20.14.5683.0+2
CVEListV5intel_unison_softwareSee references

🔴Vulnerability Details

2
GHSA
GHSA-qp5j-mmrp-vj4f: Improper input validation for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network acc2023-11-14
CVEList
CVE-2023-36860: Improper input validation for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network acc2023-11-14
CVE-2023-36860 (HIGH CVSS 8.8) | Improper input validation for some | cvebase.io