CVE-2023-27506
Authenticated Local Privilege Escalation vulnerability in Intel Optimization for Tensorflow
5.5
MEDIUM
CVSS 3.1
EPSS 0.07%
Description
Improper buffer restrictions in the Intel(R) Optimization for Tensorflow software before version 2.12 may allow an authenticated user to potentially enable escalation of privilege via local access.
How to fix CVE-2023-27506
To remediate CVE-2023-27506, upgrade the affected package to a fixed version below.
- —upgrade to 2.12 or later
- —upgrade to 2.12 or later
- —upgrade to 2.12 or later
Is CVE-2023-27506 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (3)
- from 0, < 2.12
- from 0, < 2.12
- from 0, < 2.12
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.5 | CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:L |