medium
6.7
CWE
284
Advisory Published
Updated

CVE-2023-27391

First published: Fri Aug 11 2023(Updated: )

Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local access.

Credit: secure@intel.com secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel Advisor For Oneapi<2023.1
Intel Cpu Runtime For Opencl Applications<2023.1
Intel Distribution For Python Programming Language<2023.1
Intel Dpc\+\+ Compatibility Tool<2023.1
Intel Embree Ray Tracing Kernel Library<2023.1
Intel Fortran Compiler<2023.1
Intel Implicit Spmd Program Compiler<1.19.1
Intel Inspector For Oneapi<2023.1
Intel Integrated Performance Primitives<2021.8
Intel Ipp Cryptography<2021.7.0
Intel MPI Library<2021.9.0
Intel Oneapi Base Toolkit<2023.1
Intel Oneapi Data Analytics Library<2023.1
Intel Oneapi Deep Neural Network Library<2023.1
Intel Oneapi Dpc\+\+\/c\+\+ Compiler<2023.1
Intel Oneapi Dpc\+\+ Library \(onedpl\)<2022.1
Intel Oneapi Hpc Toolkit<2023.1
Intel Oneapi Iot Toolkit<2023.1
Intel Oneapi Math Kernel Library<2023.1
Intel Oneapi Rendering Toolkit<2023.1
Intel Oneapi Threading Building Blocks<2021.9.0
Intel Oneapi Toolkit And Component Software Installer<4.3.1.493
Intel Oneapi Video Processing Library<2023.1
Intel Open Image Denoise<1.4.3
Intel Open Volume Kernel Library<2023.1
Intel Ospray<2023.1
Intel Ospray Studio<2023.1
Intel Trace Analyzer and Collector<2021.9.0
Intel Vtune Profiler For Oneapi<2023.1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2023-27391?

    CVE-2023-27391 is a vulnerability that involves improper access control in some Intel(R) oneAPI Toolkit and component software installers.

  • What is the severity of CVE-2023-27391?

    The severity of CVE-2023-27391 is medium, with a severity value of 6.7.

  • How does CVE-2023-27391 affect Intel oneAPI Toolkit and component software installers?

    CVE-2023-27391 may allow a privileged user to potentially enable escalation of privilege via local access in Intel oneAPI Toolkit and component software installers.

  • Which versions of Intel oneAPI Toolkit and component software installers are affected by CVE-2023-27391?

    Versions before 4.3.1.493 of Intel oneAPI Toolkit and component software installers may be affected by CVE-2023-27391.

  • Where can I find more information about CVE-2023-27391?

    You can find more information about CVE-2023-27391 at the following reference: http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00890.html

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203