Insufficiently Protected Credentials in Intel AMT SDK, EMA, and MC Products
CVE-2022-26341

8.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Amt Sdk, Intel(r) Ema And Intel(r) Mc
Vendor: CVE Published:; 11 November 2022

Summary

The vulnerability relates to insufficiently protected credentials in Intel AMT SDK, Intel EMA, and Intel MC software. These affected products prior to their respective versions may allow an authenticated user to exploit network access to potentially escalate privileges, presenting a significant risk if left unaddressed. Users and administrators are encouraged to assess their systems and apply the necessary updates to mitigate this vulnerability.

Affected Version(s)

Intel(R) AMT SDK, Intel(R) EMA and Intel(R) MC See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 11, 2022
Vulnerability Reserved
Apr 5, 2022