Vulnerability Description
Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may allow an authenticateed user to potentially enable information disclosure via local access.
CVSS Score
3.8
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Sgx Dcap | < 1.19.100.3 |
Related Weaknesses (CWE)
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01014.Vendor Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01014.Vendor Advisory
FAQ
What is CVE-2023-42776?
CVE-2023-42776 is a vulnerability with a CVSS score of 3.8 (LOW). Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may allow an authenticateed user to potentially enable information disclosure via local access.
How severe is CVE-2023-42776?
CVE-2023-42776 has been rated LOW with a CVSS base score of 3.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-42776?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Sgx Dcap.