CVE-2022-27638

Uncontrolled search path element in the Intel(R) Advanced Link Analyzer Pro before version 22.2 and Standard edition software before version 22.1.1 STD may allow an authenticated user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:intel:advanced_link_analyzer:*:*:*:*:standard:*:*:*
cpe:2.3:a:intel:advanced_link_analyzer:*:*:*:*:pro:*:*:*

History

21 Nov 2024, 06:56

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00715.html - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00715.html - Patch, Vendor Advisory
CVSS v2 : unknown
v3 : 7.8
v2 : unknown
v3 : 6.7

Information

Published : 2022-11-11 16:15

Updated : 2024-11-21 06:56


NVD link : CVE-2022-27638

Mitre link : CVE-2022-27638

CVE.ORG link : CVE-2022-27638


JSON object : View

Products Affected

intel

  • advanced_link_analyzer
CWE
CWE-427

Uncontrolled Search Path Element