Rewterz Threat Advisory – CVE-2023-0008 – Palo Alto Networks PAN-OS Vulnerability
May 11, 2023Rewterz Threat Advisory – Multiple Intel QAT Engine and Driver Vulnerabilities
May 11, 2023Rewterz Threat Advisory – CVE-2023-0008 – Palo Alto Networks PAN-OS Vulnerability
May 11, 2023Rewterz Threat Advisory – Multiple Intel QAT Engine and Driver Vulnerabilities
May 11, 2023Severity
Medium
Analysis Summary
CVE-2022-40685 CVSS:6.5
Intel Data Center Manager could allow a remote authenticated attacker to obtain sensitive information, caused by insufficiently protected credentials. An attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
CVE-2022-40210 CVSS:6.8
Intel Data Center Manager could allow a local authenticated attacker to gain elevated privileges on the system, caused by the exposure of data element to wrong session. An attacker could exploit this vulnerability to gain elevated privileges.
Impact
- Information Disclosure
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-40685
- CVE-2022-40210
Affected Vendors
Intel
Affected Products
- Intel Data Center Manager 5.0
Remediation
Refer to INTEL Security Advisory for patch, upgrade or suggested workaround information.