Vulnerability Description
Improper access control in the Crypto API Toolkit for Intel(R) SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
8.4
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Crypto Api Toolkit For Intel Sgx | < 2.0 |
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00746.hVendor Advisory
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00746.hVendor Advisory
FAQ
What is CVE-2022-21163?
CVE-2022-21163 is a vulnerability with a CVSS score of 8.4 (HIGH). Improper access control in the Crypto API Toolkit for Intel(R) SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access.
How severe is CVE-2022-21163?
CVE-2022-21163 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-21163?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Crypto Api Toolkit For Intel Sgx.