CVE-2022-26341

Insufficiently protected credentials in software in Intel(R) AMT SDK before version 16.0.4.1, Intel(R) EMA before version 1.7.1 and Intel(R) MC before version 2.3.2 may allow an authenticated user to potentially enable escalation of privilege via network access.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:intel:active_management_technology_software_development_kit:*:*:*:*:*:*:*:*
cpe:2.3:a:intel:endpoint_management_assistant:*:*:*:*:*:*:*:*
cpe:2.3:a:intel:manageability_commander:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:53

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00680.html - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00680.html - Patch, Vendor Advisory
CVSS v2 : unknown
v3 : 8.8
v2 : unknown
v3 : 8.2

Information

Published : 2022-11-11 16:15

Updated : 2024-11-21 06:53


NVD link : CVE-2022-26341

Mitre link : CVE-2022-26341

CVE.ORG link : CVE-2022-26341


JSON object : View

Products Affected

intel

  • endpoint_management_assistant
  • manageability_commander
  • active_management_technology_software_development_kit
CWE
CWE-522

Insufficiently Protected Credentials