Lucene search

[email protected]CVE-2022-21152

HistoryAug 18, 2022 - 8:15 p.m.

CVE-2022-21152

2022-08-1820:15:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2022-21152

intel

edge insights

industrial

software

access control

information disclosure

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.2 Medium

AI Score

Confidence

High

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

11.8%

JSON

Improper access control in the Intel® Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable information disclosure via local access.

CPENameOperatorVersion
intel:edge_insights_for_industrialintel edge insights for industriallt2.6.1

CPE	Name	Operator	Version
intel:edge_insights_for_industrial	intel edge insights for industrial	lt	2.6.1

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00653.html

Social References

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.2 Medium

AI Score

Confidence

High

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

11.8%

JSON

Related for CVE-2022-21152

prion1 intel1