CVE-2022-27187

Uncontrolled search path element in the Intel(R) Quartus Prime Standard edition software before version 21.1 Patch 0.02std may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: Nov 11, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-27187
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
intel / quartus_prime	-	21.1.x

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00659.html

Vulnerability Database

290,020

CVE-2022-27187