AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2023-27506: Improper buffer restrictions in the Intel(R) Optimization for Tensorflow software before version 2.12 may allow an authe

mediumvulnerability

security

Source: NVD/CVE DatabaseAugust 11, 2023CVE-2023-27506

Summary

CVE-2023-27506 is a vulnerability in Intel Optimization for Tensorflow software before version 2.12 involving improper buffer restrictions (a memory safety flaw where a program doesn't properly check that it stays within allocated memory). An authenticated user with local access to a system could potentially use this flaw to escalate their privileges, gaining higher-level access than they should have.

Solution / Mitigation

Update Intel Optimization for Tensorflow to version 2.12 or later.

Vulnerability Details

CVSS Score

5.5(medium)

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack SophisticationModerate

Impact (CIA+S)

integrity

AI Component TargetedFramework

Taxonomy References

CWE (Weakness Type)

CWE-92 CWE-119

CAPEC (Attack Pattern)

CAPEC-100

Affected Vendors

Original source: https://nvd.nist.gov/vuln/detail/CVE-2023-27506

First tracked: February 15, 2026 at 08:42 PM

Classified by LLM (prompt v3) · confidence: 85%