Unison Software
CVE-2023-39221
HIGH
Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
Improper access control for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access.
AnalysisAI
Improper access control for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-284. Improper access control for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access. Affected products include: Intel Unison Software.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Unison Software
View allCross-site request forgery in some Intel Unison software may allow an authenticated user to potentially enable escalatio
Improper input validation for some Intel Unison software may allow an authenticated user to potentially enable escalatio
Improper authentication for some Intel Unison software may allow an authenticated user to potentially enable escalation
Access of memory location after end of buffer for some Intel Unison software may allow an authenticated user to potentia
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially enable escalation of pr
Improper access control for some Intel Unison software may allow an unauthenticated user to potentially enable denial of
Improper input validation for some Intel Unison software may allow an unauthenticated user to potentially enable denial
Improper access control for some Intel Unison software may allow an unauthenticated user to potentially enable denial of
Improper access control for some Intel Unison software may allow a privileged user to potentially enable escalation of p
Improper input validationation for some Intel Unison software may allow an authenticated user to potentially enable deni
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially enable denial of servic
Improper input validationation for some Intel Unison software may allow a privileged user to potentially enable denial o
Same weakness CWE-284 – Improper Access Control
View allSame technique Privilege Escalation
View allShare
External POC / Exploit Code
Leaving vuln.today