Insufficiently protected credentials in software in Intel(R) AMT SDK before version 16.0.4.1, Intel(R) EMA before version 1.7.1 and Intel(R) MC before version 2.3.2 may allow an authenticated user to potentially enable escalation of privilege via network access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00680.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
17 Nov 2022, 23:14
Type | Values Removed | Values Added |
---|---|---|
First Time |
Intel
Intel manageability Commander Intel endpoint Management Assistant Intel active Management Technology Software Development Kit |
|
CWE | CWE-522 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:a:intel:active_management_technology_software_development_kit:*:*:*:*:*:*:*:* cpe:2.3:a:intel:endpoint_management_assistant:*:*:*:*:*:*:*:* cpe:2.3:a:intel:manageability_commander:*:*:*:*:*:*:*:* |
|
References | (MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00680.html - Patch, Vendor Advisory |
11 Nov 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-11 16:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-26341
Mitre link : CVE-2022-26341
CVE.ORG link : CVE-2022-26341
JSON object : View
Products Affected
intel
- active_management_technology_software_development_kit
- manageability_commander
- endpoint_management_assistant
CWE
CWE-522
Insufficiently Protected Credentials