Main Vulnerability Database Vulnerabilities #VU76174

Stack-based buffer overflow in Trace Analyzer and Collector - CVE-2023-23569

Published: May 16, 2023

Vulnerability identifier: #VU76174

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2023-23569

CWE-ID: CWE-121

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Intel

Affected software:
Trace Analyzer and Collector

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error. A remote unauthenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2023-23569

Install update from vendor's website.

Sources

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00805.html

Stack-based buffer overflow in Trace Analyzer and Collector - CVE-2023-23569

Detailed vulnerability description

How to mitigate CVE-2023-23569

Sources

Please verify you're human