Vulnerability CVE-2022-21203
Published: 2022-02-09   Modified: 2022-02-10

Description:
Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard Edition before version 21.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Type:

CWE-281

 (Improper Preservation of Permissions)

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.6/10
6.4/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Intel -> Quartus prime 

 References:
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00632.html
Copyright 2024, cxsecurity.com

 

Back to Top