Details of VAR-202208-0867

ID

VAR-202208-0867

CVE

CVE-2022-29507

TITLE

Intel's team blue Vulnerability regarding insufficient protection of authentication information in

Trust: 0.8

sources: JVNDB: JVNDB-2022-015157

DESCRIPTION

Insufficiently protected credentials in the Intel(R) Team Blue mobile application in all versions may allow an authenticated user to potentially enable information disclosure via local access. Intel's team blue There are vulnerabilities in inadequate protection of credentials.Information may be obtained

Trust: 1.71

sources: NVD: CVE-2022-29507 // JVNDB: JVNDB-2022-015157 // VULHUB: VHN-421025

AFFECTED PRODUCTS

vendor:	intel	model:	team blue	scope:	eq	version:	*	Trust: 1.0
vendor:	インテル	model:	team blue	scope:	eq	version:	-	Trust: 0.8
vendor:	インテル	model:	team blue	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-015157 // NVD: CVE-2022-29507

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-29507
value:	MEDIUM
Trust: 1.0
134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2022-29507
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2022-29507
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202208-2671
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2022-29507
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.1
Trust: 2.0
NVD:	CVE-2022-29507
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-015157 // CNNVD: CNNVD-202208-2671 // NVD: CVE-2022-29507 // NVD: CVE-2022-29507

PROBLEMTYPE DATA

problemtype:	CWE-522	Trust: 1.1
problemtype:	Inadequate protection of credentials (CWE-522) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-421025 // JVNDB: JVNDB-2022-015157 // NVD: CVE-2022-29507

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202208-2671

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202208-2671

PATCH

title:

Intel Team Blue Security vulnerabilities

url:

http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=205184

Trust: 0.6

sources: CNNVD: CNNVD-202208-2671

EXTERNAL IDS

db:	NVD	id:	CVE-2022-29507	Trust: 3.3
db:	JVN	id:	JVNVU99494206	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-015157	Trust: 0.8
db:	AUSCERT	id:	ESB-2022.3959	Trust: 0.6
db:	CNNVD	id:	CNNVD-202208-2671	Trust: 0.6
db:	VULHUB	id:	VHN-421025	Trust: 0.1

sources: VULHUB: VHN-421025 // JVNDB: JVNDB-2022-015157 // CNNVD: CNNVD-202208-2671 // NVD: CVE-2022-29507

REFERENCES

url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00705.html	Trust: 2.5
url:	https://jvn.jp/vu/jvnvu99494206/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2022-29507	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2022.3959	Trust: 0.6
url:	https://cxsecurity.com/cveshow/cve-2022-29507/	Trust: 0.6

sources: VULHUB: VHN-421025 // JVNDB: JVNDB-2022-015157 // CNNVD: CNNVD-202208-2671 // NVD: CVE-2022-29507

SOURCES

db:	VULHUB	id:	VHN-421025
db:	JVNDB	id:	JVNDB-2022-015157
db:	CNNVD	id:	CNNVD-202208-2671
db:	NVD	id:	CVE-2022-29507

LAST UPDATE DATE

2025-02-20T20:05:51.224000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-421025	date:	2022-08-22T00:00:00
db:	JVNDB	id:	JVNDB-2022-015157	date:	2023-09-25T08:45:00
db:	CNNVD	id:	CNNVD-202208-2671	date:	2022-08-23T00:00:00
db:	NVD	id:	CVE-2022-29507	date:	2025-02-18T16:15:10.620

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-421025	date:	2022-08-18T00:00:00
db:	JVNDB	id:	JVNDB-2022-015157	date:	2023-09-25T00:00:00
db:	CNNVD	id:	CNNVD-202208-2671	date:	2022-08-10T00:00:00
db:	NVD	id:	CVE-2022-29507	date:	2022-08-18T20:15:11.313