Uncontrolled Search Path in Intel SEAPI Installation Binaries
CVE-2022-26374

7.8HIGH

Key Information:

Vendor: Intel
Status: Version
Vendor: CVE Published:; 18 August 2022

What is CVE-2022-26374?

The installation binaries for Intel SEAPI are vulnerable due to an uncontrolled search path issue. This flaw may allow an authenticated user with local access to escalate their privileges, potentially leading to unauthorized actions within the system. It is crucial for organizations leveraging Intel SEAPI to assess their security posture and apply necessary updates to mitigate this vulnerability. For detailed information, refer to the advisory provided by Intel.

Affected Version(s)

version See references

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2022
Vulnerability Reserved
May 11, 2022