Lucene search

[email protected]CVE-2022-30296

HistoryAug 18, 2022 - 8:15 p.m.

CVE-2022-30296

2022-08-1820:15:00

CWE-522

[email protected]

web.nvd.nist.gov

cve-2022-30296

intel

datacenter

event

ios

credentials

information disclosure

network access

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

50.6%

JSON

Insufficiently protected credentials in the Intel® Datacenter Group Event iOS application, all versions, may allow an unauthenticated user to potentially enable information disclosure via network access.

CPENameOperatorVersion
intel:datacenter_group_eventintel datacenter group eventeq*

CPE	Name	Operator	Version
intel:datacenter_group_event	intel datacenter group event	eq	*

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00703.html

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

50.6%

JSON

Related for CVE-2022-30296

prion1 intel1