Information Disclosure Vulnerability in Intel Unison Software
CVE-2022-44612

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Unison(tm) Software
Vendor: CVE Published:; 11 August 2023

Summary

The Intel Unison software, prior to version 10.12, has been found to contain hard-coded credentials that could be exploited by an authenticated user. This vulnerability may allow unauthorized access to sensitive information through local access, potentially compromising the integrity of the application's data. It is crucial for users and organizations to upgrade to the latest version to mitigate the risk associated with this security flaw.

Affected Version(s)

Intel(R) Unison(TM) software before version 10.12

References

http://www.intel.com/content/www/us/en/security-center/ad...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 11, 2023
Vulnerability Reserved
Nov 10, 2022