CVE-2023-33872 MEDIUM

CVE-2023-33872

Vendor N/A

Product Intel Support android application

Weakness CWE-284

Published November 14, 2023

Last update August 30, 2024

View on NVD All CVEs

CVSS base score

5.5/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

Improper access control in the Intel Support android application all verions may allow an authenticated user to potentially enable information disclosure via local access.

Key dates

02Disclosure timeline

November 14, 2023 CVE published

August 30, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-33872 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

04Related CVE

CVE-2024-41806 Open edX Platform's instructor upload CSV for cohort creation not Private by Default CVE-2024-29082 Vonets WiFi Bridges Improper Access Control CVE-2022-28777 CVE-2026-24670 Open eClass Has Broken Access Control in Course Units Module Allows Students to Create Units CVE-2023-7055 PHPGurukul Online Notes Sharing System Contact Information profile.php access control