Improper Access Control in Intel Edge Orchestrator Software
CVE-2025-24840

2.3LOW

Key Information:

Vendor: Intel
Status: Edge Orchestrator Software
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-24840?

A vulnerability exists in Intel's Edge Orchestrator software, specifically in versions prior to 24.11.1. This flaw stems from improper access control, which could be exploited by an unauthenticated user to potentially enable escalation of privileges through adjacent access. This could allow unauthorized actions and impact the security posture of the affected system.

Affected Version(s)

Edge Orchestrator software before version 24.11.1 for Intel® Tiber™ Edge Platform

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Feb 21, 2025