CVE-2022-27187 — Vulnetix

CVE-2022-27187 PUBLISHED CVSS 6.699999809265137 MEDIUM

Uncontrolled search path element in the Intel(R) Quartus Prime Standard edition software before version 21.1 Patch 0.02std may allow an authenticated user to potentially enable escalation of privilege via local access.

EPSS 0.07% · 20.7th percentile

Risk Scores

CVSS v3.1

6.699999809265137

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.07%

20.7th percentile

Affected Products

Vendor	Product	Versions
n/a	Intel(R) Quartus Prime Standard edition software	before version 21.1 Patch 0.02std
intel	quartus_prime	0

Timeline

Nov 9, 2022 CVE Published
Nov 12, 2022 EPSS Score
Dec 25, 2022 EPSS Score
Feb 6, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 21, 2023 EPSS Score
May 2, 2023 EPSS Score
Jun 14, 2023 EPSS Score
Jul 27, 2023 EPSS Score
Sep 8, 2023 EPSS Score
Oct 21, 2023 EPSS Score
Dec 3, 2023 EPSS Score

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00659.html url
https://nvd.nist.gov/vuln/detail/CVE-2022-27187 advisory

Open in Interactive Console →