Information Disclosure Vulnerability in Edge Orchestrator Software by Intel
CVE-2025-24921

6.9MEDIUM

Key Information:

Vendor: Intel
Status: Edge Orchestrator Software
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-24921?

An improper neutralization vulnerability in Intel's Edge Orchestrator software before version 24.11.1 may allow an unauthenticated user to possibly facilitate information disclosure through adjacent access. This weakness emphasizes the need for robust security measures to prevent unauthorized users from accessing sensitive information.

Affected Version(s)

Edge Orchestrator software before version 24.11.1 for Intel® Tiber™ Edge Platform

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Feb 21, 2025