XML injection in the Quartus(R) Prime Programmer included in the Intel(R) Quartus Prime Pro and Standard edition software may allow an unauthenticated user to potentially enable information disclosure via network access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00659.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
07 Feb 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
Summary | XML injection in the Quartus(R) Prime Programmer included in the Intel(R) Quartus Prime Pro and Standard edition software may allow an unauthenticated user to potentially enable information disclosure via network access. |
06 Feb 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
Summary | XML injection Quartus(R) Prime Programmer included in the Intel(R) Quartus Prime Pro and Standard edition software may allow an unauthenticated user to potentially enable information disclosure via network access. |
16 Nov 2022, 02:50
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:intel:quartus_prime:*:*:*:*:standard:*:*:* cpe:2.3:a:intel:quartus_prime:*:*:*:*:pro:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | (MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00659.html - Patch, Vendor Advisory | |
CWE | CWE-91 | |
First Time |
Intel
Intel quartus Prime |
11 Nov 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-11 16:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-27233
Mitre link : CVE-2022-27233
CVE.ORG link : CVE-2022-27233
JSON object : View
Products Affected
intel
- quartus_prime
CWE
CWE-91
XML Injection (aka Blind XPath Injection)