CVE-2022-21220: XEE
First published: Wed Feb 09 2022(Updated: )
Improper restriction of XML external entity for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Quartus Prime | <21.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Intel Quartus Prime Pro Edition vulnerability?
The vulnerability ID for this Intel Quartus Prime Pro Edition vulnerability is CVE-2022-21220.
What is the severity level of CVE-2022-21220?
The severity level of CVE-2022-21220 is high (7.8).
How does CVE-2022-21220 impact Intel Quartus Prime Pro Edition?
CVE-2022-21220 may allow an authenticated user with local access to potentially enable escalation of privilege.
Which version of Intel Quartus Prime Pro Edition is affected by CVE-2022-21220?
Intel Quartus Prime Pro Edition before version 21.3 is affected by CVE-2022-21220.
How can I fix the CVE-2022-21220 vulnerability in Intel Quartus Prime Pro Edition?
To fix the CVE-2022-21220 vulnerability in Intel Quartus Prime Pro Edition, update to version 21.3 or later.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/intel
- canonical/intel quartus prime