PT-2023-14016 · Intel · Intel Quartus Prime Pro

Alberto Cid

Publicado

2023-05-10

Atualizado

2023-05-23

CVE-2022-41693

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) Quartus(R) Prime Pro edition software versions prior to 22.3

Description The issue is related to an uncontrolled search path in the software, which may allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations For versions prior to 22.3, update to version 22.3 or later to resolve the issue. As a temporary workaround, consider restricting local access to the software to minimize the risk of exploitation.

Correção

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-428CWE-427

Identificadores relacionados

CVE-2022-41693

Produtos afetados

Intel Quartus Prime Pro

PT-2023-14016 · Intel · Intel Quartus Prime Pro

CVE-2022-41693

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5