CVE-2022-26888: XSS
First published: Thu Feb 16 2023(Updated: )
Cross-site scripting in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable information disclosure via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Quartus Prime | <22.1 | |
| Intel Quartus Prime | <22.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-26888?
CVE-2022-26888 is a vulnerability in the Intel(R) Quartus Prime Pro and Standard edition software that allows an authenticated user to potentially enable information disclosure via local access.
What is the severity of CVE-2022-26888?
CVE-2022-26888 has a severity score of 4.1, which is considered medium.
How can an attacker exploit CVE-2022-26888?
An attacker can exploit CVE-2022-26888 by using cross-site scripting techniques to potentially enable information disclosure through local access in the Intel(R) Quartus Prime Pro and Standard edition software.
Which versions of Intel Quartus Prime are affected by CVE-2022-26888?
The Intel Quartus Prime Pro and Standard edition software versions up to 22.1 and 22.2 are affected by CVE-2022-26888.
Is there a fix available for CVE-2022-26888?
To fix CVE-2022-26888, it is recommended to update the Intel Quartus Prime Pro and Standard edition software to the latest available version.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel quartus prime