PT-2022-18317 · Intel · Quartus Prime Standard+1

Published

2022-11-11

Updated

2023-02-07

CVE-2022-27233

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel(R) Quartus Prime Pro and Standard edition software (affected versions not specified)

Description The issue concerns XML injection in the Quartus(R) Prime Programmer, which may allow an unauthenticated user to potentially enable information disclosure via network access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-91

Related Identifiers

CVE-2022-27233

Affected Products

Quartus Prime Pro

Quartus Prime Standard

PT-2022-18317 · Intel · Quartus Prime Standard+1

CVE-2022-27233

Weakness Enumeration

Related Identifiers

Affected Products

References · 3