CVE-2022-45128

CWE-285CWE-863Incorrect Authorization3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 73.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Endpoint Management Assistant
Timeline
PublishedMay 10

Description

Improper authorization in the Intel(R) EMA software before version 1.9.0.0 may allow an authenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:HExploitability: 1.3 | Impact: 3.6

Affected Packages2 packages

CVEListV5intel(r)_ema_softwarebefore version 1.9.0.0

Patches

Patch: www.intel.comPatch: www.intel.com

🔴Vulnerability Details

2
CVEList
CVE-2022-45128: Improper authorization in the Intel(R) EMA software before version 12023-05-10
GHSA
GHSA-2rqw-cvq5-cpcc: Improper authorization in the Intel(R) EMA software before version 12023-05-10
CVE-2022-45128 (MEDIUM CVSS 5.5) | Improper authorization in the Intel | cvebase.io