CVE-2023-28823

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Aug 11, 2023

Updated: Nov 7, 2023

CWE ID 427

Summary

CVE-2023-28823 is a vulnerability affecting some versions of Intel(R) oneAPI Toolkit and component software installers prior to 4.3.1.493. An authenticated user can exploit an uncontrolled search path during installation, potentially enabling privilege escalation through local access. This issue could lead to significant security risks if not addressed promptly. Intel strongly advises users to update to the latest version of the software to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Intel Integrated Performance Primitives

Affected Vendors

Intel Corp.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sRcQIJ
https://www.cve.org/CVERecord?id=CVE-2023-28823
https://nvd.nist.gov/vuln/detail/CVE-2023-28823

Back to Vulnerability Database