Details of VAR-202208-1490

ID

VAR-202208-1490

CVE

CVE-2022-25966

TITLE

Intel's edge insights for industrial Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-015180

DESCRIPTION

Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access. Intel's edge insights for industrial Exists in unspecified vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Intel Edge Insights for Industrial is a pre-validated, ready-to-deploy software reference design from Intel Corporation for video and time-series data ingestion. Attackers exploit this vulnerability to escalate privileges

Trust: 1.71

sources: NVD: CVE-2022-25966 // JVNDB: JVNDB-2022-015180 // VULHUB: VHN-416751

AFFECTED PRODUCTS

vendor:	intel	model:	edge insights for industrial	scope:	lt	version:	2.6.1	Trust: 1.0
vendor:	インテル	model:	edge insights for industrial	scope:	eq	version:	2.6.1	Trust: 0.8
vendor:	インテル	model:	edge insights for industrial	scope:	eq	version:	-	Trust: 0.8
vendor:	インテル	model:	edge insights for industrial	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-015180 // NVD: CVE-2022-25966

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-25966
value:	HIGH
Trust: 1.0
134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2022-25966
value:	HIGH
Trust: 1.0
NVD:	CVE-2022-25966
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202208-3403
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2022-25966
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	CVE-2022-25966
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-015180 // CNNVD: CNNVD-202208-3403 // NVD: CVE-2022-25966 // NVD: CVE-2022-25966

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8
problemtype:	CWE-269	Trust: 0.1

sources: VULHUB: VHN-416751 // JVNDB: JVNDB-2022-015180 // NVD: CVE-2022-25966

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202208-3403

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202208-3403

PATCH

title:

Intel Edge Insights for Industrial Security vulnerabilities

url:

http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=205101

Trust: 0.6

sources: CNNVD: CNNVD-202208-3403

EXTERNAL IDS

db:	NVD	id:	CVE-2022-25966	Trust: 3.3
db:	JVN	id:	JVNVU99494206	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-015180	Trust: 0.8
db:	CNNVD	id:	CNNVD-202208-3403	Trust: 0.7
db:	VULHUB	id:	VHN-416751	Trust: 0.1

sources: VULHUB: VHN-416751 // JVNDB: JVNDB-2022-015180 // CNNVD: CNNVD-202208-3403 // NVD: CVE-2022-25966

REFERENCES

url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00653.html	Trust: 2.5
url:	https://jvn.jp/vu/jvnvu99494206/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2022-25966	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2022-25966/	Trust: 0.6

sources: VULHUB: VHN-416751 // JVNDB: JVNDB-2022-015180 // CNNVD: CNNVD-202208-3403 // NVD: CVE-2022-25966

SOURCES

db:	VULHUB	id:	VHN-416751
db:	JVNDB	id:	JVNDB-2022-015180
db:	CNNVD	id:	CNNVD-202208-3403
db:	NVD	id:	CVE-2022-25966

LAST UPDATE DATE

2025-05-07T22:52:15.381000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-416751	date:	2022-08-19T00:00:00
db:	JVNDB	id:	JVNDB-2022-015180	date:	2023-09-25T08:45:00
db:	CNNVD	id:	CNNVD-202208-3403	date:	2022-08-29T00:00:00
db:	NVD	id:	CVE-2022-25966	date:	2025-05-05T17:18:02.243

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-416751	date:	2022-08-18T00:00:00
db:	JVNDB	id:	JVNDB-2022-015180	date:	2023-09-25T00:00:00
db:	CNNVD	id:	CNNVD-202208-3403	date:	2022-08-18T00:00:00
db:	NVD	id:	CVE-2022-25966	date:	2022-08-18T20:15:10.780