Details of VAR-202208-1427

ID

VAR-202208-1427

CVE

CVE-2022-21148

TITLE

Intel's edge insights for industrial Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-015208

DESCRIPTION

Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access. Intel's edge insights for industrial Exists in unspecified vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Intel Edge Insights for Industrial is a pre-validated, ready-to-deploy software reference design from Intel Corporation for video and time-series data ingestion. Intel Edge Insights for Industrial software prior to version 2.6.1 has a security vulnerability

Trust: 1.71

sources: NVD: CVE-2022-21148 // JVNDB: JVNDB-2022-015208 // VULHUB: VHN-408076

AFFECTED PRODUCTS

vendor:	intel	model:	edge insights for industrial	scope:	lt	version:	2.6.1	Trust: 1.0
vendor:	インテル	model:	edge insights for industrial	scope:	eq	version:	2.6.1	Trust: 0.8
vendor:	インテル	model:	edge insights for industrial	scope:	eq	version:	-	Trust: 0.8
vendor:	インテル	model:	edge insights for industrial	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-015208 // NVD: CVE-2022-21148

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-21148
value:	HIGH
Trust: 1.0
134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2022-21148
value:	HIGH
Trust: 1.0
NVD:	CVE-2022-21148
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202208-3417
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2022-21148
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	CVE-2022-21148
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-015208 // CNNVD: CNNVD-202208-3417 // NVD: CVE-2022-21148 // NVD: CVE-2022-21148

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8
problemtype:	CWE-269	Trust: 0.1

sources: VULHUB: VHN-408076 // JVNDB: JVNDB-2022-015208 // NVD: CVE-2022-21148

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202208-3417

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202208-3417

PATCH

title:

Intel Edge Insights for Industrial Security vulnerabilities

url:

http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=205110

Trust: 0.6

sources: CNNVD: CNNVD-202208-3417

EXTERNAL IDS

db:	NVD	id:	CVE-2022-21148	Trust: 3.3
db:	JVN	id:	JVNVU99494206	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-015208	Trust: 0.8
db:	CNNVD	id:	CNNVD-202208-3417	Trust: 0.7
db:	VULHUB	id:	VHN-408076	Trust: 0.1

sources: VULHUB: VHN-408076 // JVNDB: JVNDB-2022-015208 // CNNVD: CNNVD-202208-3417 // NVD: CVE-2022-21148

REFERENCES

url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00653.html	Trust: 2.5
url:	https://jvn.jp/vu/jvnvu99494206/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2022-21148	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2022-21148/	Trust: 0.6

sources: VULHUB: VHN-408076 // JVNDB: JVNDB-2022-015208 // CNNVD: CNNVD-202208-3417 // NVD: CVE-2022-21148

SOURCES

db:	VULHUB	id:	VHN-408076
db:	JVNDB	id:	JVNDB-2022-015208
db:	CNNVD	id:	CNNVD-202208-3417
db:	NVD	id:	CVE-2022-21148

LAST UPDATE DATE

2025-05-07T20:58:29.023000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-408076	date:	2022-08-19T00:00:00
db:	JVNDB	id:	JVNDB-2022-015208	date:	2023-09-25T08:46:00
db:	CNNVD	id:	CNNVD-202208-3417	date:	2022-08-29T00:00:00
db:	NVD	id:	CVE-2022-21148	date:	2025-05-05T17:17:39.760

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-408076	date:	2022-08-18T00:00:00
db:	JVNDB	id:	JVNDB-2022-015208	date:	2023-09-25T00:00:00
db:	CNNVD	id:	CNNVD-202208-3417	date:	2022-08-18T00:00:00
db:	NVD	id:	CVE-2022-21148	date:	2022-08-18T20:15:09.870