First published: Tue Nov 14 2023(Updated: )
Insertion of sensitive information into log file in some Intel(R) On Demand software before versions 1.16.2, 2.1.1, 3.1.0 may allow an authenticated user to potentially enable information disclosure via local access.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel On Demand | =1.16.1.1 | |
Intel On Demand | =2.1.0.1 | |
Intel On Demand | =3.0.1.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2023-32283.
The severity level of CVE-2023-32283 is medium with a score of 5.5.
The affected versions of Intel On Demand software are 1.16.1.1, 2.1.0.1, and 3.0.1.3.
CVE-2023-32283 may allow an authenticated user to potentially enable information disclosure via local access.
Yes, updating to versions 1.16.2, 2.1.1, or 3.1.0 of Intel On Demand software will fix the vulnerability.