CVE-2022-43475

CWE-9223 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 69.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Data Center Manager
Timeline
PublishedMay 10

Description

Insecure storage of sensitive information in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:NExploitability: 0.8 | Impact: 5.2

Affected Packages2 packages

CVEListV5intel(r)_dcm_softwarebefore version 5.1

Patches

Patch: www.intel.comPatch: www.intel.com

🔴Vulnerability Details

2
GHSA
GHSA-67qp-79mm-xm85: Insecure storage of sensitive information in the Intel(R) DCM software before version 52023-05-10
CVEList
CVE-2022-43475: Insecure storage of sensitive information in the Intel(R) DCM software before version 52023-05-10
CVE-2022-43475 (HIGH CVSS 7.8) | Insecure storage of sensitive infor | cvebase.io