CVE-2022-25899
First published: Thu Aug 18 2022(Updated: )
Authentication bypass for the Open AMT Cloud Toolkit software maintained by Intel(R) before versions 2.0.2 and 2.2.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Open Active Management Technology Cloud Toolkit | <2.0.2 | |
| Intel Open Active Management Technology Cloud Toolkit | >=2.2.0<2.2.2 | |
| <2.0.2 | ||
| >=2.2.0<2.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-25899?
CVE-2022-25899 is classified as a high severity vulnerability due to the potential for privilege escalation and unauthenticated access.
How do I fix CVE-2022-25899?
To fix CVE-2022-25899, upgrade to Intel Open AMT Cloud Toolkit version 2.0.2 or 2.2.2 or later.
Who is affected by CVE-2022-25899?
CVE-2022-25899 affects users of Intel Open AMT Cloud Toolkit versions prior to 2.0.2 and versions between 2.2.0 and 2.2.2.
What type of vulnerability is CVE-2022-25899?
CVE-2022-25899 is an authentication bypass vulnerability that can lead to escalation of privilege.
Can CVE-2022-25899 be exploited remotely?
Yes, CVE-2022-25899 can potentially be exploited remotely by an unauthenticated user.
- collector/nvd-index
- agent/type
- agent/references
- agent/severity
- agent/remedy
- agent/first-publish-date
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/source
- agent/event
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/intel
- canonical/intel open active management technology cloud toolkit
- version/intel open active management technology cloud toolkit/2.2.0