Vulnerability Description
Insufficiently protected credentials in software in Intel(R) AMT SDK before version 16.0.4.1, Intel(R) EMA before version 1.7.1 and Intel(R) MC before version 2.3.2 may allow an authenticated user to potentially enable escalation of privilege via network access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Active Management Technology Software Development Kit | < 16.0.4.1 |
| Intel | Endpoint Management Assistant | < 1.7.1 |
| Intel | Manageability Commander | < 2.3.2 |
Related Weaknesses (CWE)
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00680.PatchVendor Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00680.PatchVendor Advisory
FAQ
What is CVE-2022-26341?
CVE-2022-26341 is a vulnerability with a CVSS score of 8.2 (HIGH). Insufficiently protected credentials in software in Intel(R) AMT SDK before version 16.0.4.1, Intel(R) EMA before version 1.7.1 and Intel(R) MC before version 2.3.2 may allow an authenticated user to ...
How severe is CVE-2022-26341?
CVE-2022-26341 has been rated HIGH with a CVSS base score of 8.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-26341?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Active Management Technology Software Development Kit, Intel Endpoint Management Assistant, Intel Manageability Commander.