CVE-2023-29162

moderate-risk
Published 2024-02-14

Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access.

Do I need to act?

-
0.05% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.0/10 Medium
LOCAL / HIGH complexity

Affected Products (18)

Advisor
Cluster Checker
Distribution For Python
Inspector
Integrated Performance Primitives
Integrated Performance Primitives Cryptography
Mpi Library
Oneapi Ai Analytics Toolkit
Oneapi Deep Neural Network
Oneapi Deep Neural Network
Oneapi Hpc Toolkit
Oneapi Iot Toolkit
Oneapi Math Kernel Library
Threading Building Blocks
Vtune Profiler

Affected Vendors

Intel

References (2)

Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00988....
Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00988....
35
/ 100
moderate-risk
Severity 16/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 19/34 · Moderate