Uncontrolled search path element in the Intel(R) Advanced Link Analyzer Pro before version 22.2 and Standard edition software before version 22.1.1 STD may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00715.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
17 Nov 2022, 14:19
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:intel:advanced_link_analyzer:*:*:*:*:standard:*:*:* cpe:2.3:a:intel:advanced_link_analyzer:*:*:*:*:pro:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Intel
Intel advanced Link Analyzer |
|
References | (MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00715.html - Patch, Vendor Advisory | |
CWE | CWE-427 |
11 Nov 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-11 16:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-27638
Mitre link : CVE-2022-27638
CVE.ORG link : CVE-2022-27638
JSON object : View
Products Affected
intel
- advanced_link_analyzer
CWE
CWE-427
Uncontrolled Search Path Element