Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2023
CVE-2023-20592
Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.
CVSS Score
6.5
EPSS Score
0.004
Published
2023-11-14
CVE-2023-20596
Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution.
CVSS Score
9.8
EPSS Score
0.005
Published
2023-11-14
CVE-2023-22285
Improper access control for some Intel Unison software may allow an unauthenticated user to potentially enable denial of service via network access.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-11-14
CVE-2023-22290
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially enable denial of service via network access.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-11-14
CVE-2023-22292
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
7.3
EPSS Score
0.001
Published
2023-11-14
CVE-2023-22305
Integer overflow in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable denial of service via local access.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-11-14
CVE-2023-22310
Race condition in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable denial of service via local access.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-11-14
CVE-2022-46646
Exposure of sensitive information to an unauthorized actor for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
CVSS Score
2.2
EPSS Score
0.001
Published
2023-11-14
CVE-2022-46647
Insertion of sensitive information into log file for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
CVSS Score
2.2
EPSS Score
0.001
Published
2023-11-14
CVE-2023-20519
A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity.
CVSS Score
3.3
EPSS Score
0.001
Published
2023-11-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved