447 matches found
Xxe
Improper restriction of XML external entity reference in DSP Builder Pro for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an unauthenticated user to potentially enable information disclosure via network access...
CVE-2022-21220
Improper restriction of XML external entity for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21220
Intel Quartus Prime Pro Edition before 21.3 is affected by CVE-2022-21220 due to improper restriction of XML external entities (XXE) in the product. The issue could allow an authenticated user to escalate privileges via local access. Affected product is Intel® Quartus® Prime Pro Edition prior to ...
CVE-2022-21220
Improper restriction of XML external entity for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21205
CVE-2022-21205 is an XML External Entity (XXE) vulnerability in Intel® Quartus® Prime Pro Edition’s DSP Builder Pro. Before version 21.3, an unauthenticated attacker could potentially disclose information via network access due to improper restriction of XML external entity references. Affected p...
CVE-2022-21205
Improper restriction of XML external entity reference in DSP Builder Pro for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an unauthenticated user to potentially enable information disclosure via network access...
CVE-2022-21205
Improper restriction of XML external entity reference in DSP Builder Pro for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an unauthenticated user to potentially enable information disclosure via network access...
CVE-2022-21203
Improper permissions in the SafeNet Sentinel driver for IntelR QuartusR Prime Standard Edition before version 21.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21203
Improper permissions in the SafeNet Sentinel driver for IntelR QuartusR Prime Standard Edition before version 21.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21203
Intel Quartus Prime Standard Edition before 21.1 and Pro Edition before 21.3 are affected by CVE-2022-21203 due to improper permissions in the SafeNet Sentinel driver, enabling escalation of privilege via local access for an authenticated user. Root cause is a local-permission issue in the driver...
CVE-2022-21204
Improper permissions for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21204
Improper permissions for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21204
Intel Quartus Prime Pro Edition before 21.3 has an improper permissions issue that can allow an authenticated user to escalate privileges via local access. The Intel advisory also notes a separate path affecting Standard Edition up to 21.1. Remediation: upgrade Pro to 21.3+ (and Standard to 21.1+).
CVE-2021-44454
Improper input validation in a third-party component for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2021-44454
Intel’s advisory confirms CVE-2021-44454: a vulnerability in a third‑party component used by Intel® Quartus® Prime Pro Edition before 21.3, caused by improper input validation. The issue enables authenticated local escalation of privilege. Affected product: Intel® Quartus® Prime Pro Edition (befo...
CVE-2021-44454
Improper input validation in a third-party component for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21174
Improper access control in a third-party component of IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21174
Improper access control in a third-party component of IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21174
CVE-2022-21174 involves improper access control in a third-party component used by Intel® Quartus® Prime Pro Edition prior to version 21.3, enabling a locally authenticated user to potentially escalate privileges. The vulnerability is documented across multiple sources (NVD, Red Hat, Intel adviso...
Intel Quartus Prime Pro 安全漏洞
Intel Quartus Prime Pro is a set of multi-platform design environments from the U.S. company Intel Intel. The product is primarily used for programming programmable logic devices. A security vulnerability exists in Intel Quartus Prime Pro Edition, which stems from a potential security flaw in Int...