CVE-2022-32570Improper Authentication in Intel Quartus Prime

CWE-287Improper Authentication3 documents3 sources
Severity
7.8HIGHNVD
CNA6.7
EPSS
0.0%
top 85.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Quartus Prime
Timeline
PublishedFeb 16

Description

Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

NVDintel/quartus_prime< 22.1+1

🔴Vulnerability Details

2
CVEList
CVE-2022-32570: Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalati2023-02-16
GHSA
GHSA-wr75-9gvh-9gh6: Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalati2023-02-16
CVE-2022-32570 — Improper Authentication in Intel | cvebase