#VU87125 Improper access control in Intel products - CVE-2023-35121
Published: March 5, 2024
Vulnerability identifier: #VU87125
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-35121
CWE-ID: CWE-284
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Intel Cluster Checker
Intel Distribution for Python
Intel oneAPI AI Analytics Toolkit
Intel oneAPI Math Kernel Library
Intel VTune™ Profiler for oneAPI
Intel Integrated Performance Primitives
MPI Library
Intel Trace Analyzer and Collector
oneAPI DPC++/C++ Compiler
Intel Advisor for oneAPI
Intel Inspector for oneAPI
Intel IPP Cryptography
Intel oneAPI Base Toolkit
Intel oneAPI Deep Neural Network Library
Intel oneAPI HPC Toolkit
Intel oneAPI IoT Toolkit
Intel oneAPI Threading Building Blocks
Intel Cluster Checker
Intel Distribution for Python
Intel oneAPI AI Analytics Toolkit
Intel oneAPI Math Kernel Library
Intel VTune™ Profiler for oneAPI
Intel Integrated Performance Primitives
MPI Library
Intel Trace Analyzer and Collector
oneAPI DPC++/C++ Compiler
Intel Advisor for oneAPI
Intel Inspector for oneAPI
Intel IPP Cryptography
Intel oneAPI Base Toolkit
Intel oneAPI Deep Neural Network Library
Intel oneAPI HPC Toolkit
Intel oneAPI IoT Toolkit
Intel oneAPI Threading Building Blocks
Software vendor:
Intel
Intel
Description
The vulnerability allows a local user to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A local user can bypass implemented security restrictions and gain elevated privileges on the system.
Remediation
Install updates from vendor's website.