First published: Thu Feb 16 2023(Updated: )
Server-side request forgery in the CVAT software maintained by Intel(R) before version 2.0.1 may allow an authenticated user to potentially enable information disclosure via network access.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel Computer Vision Annotation Tool | <2.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-27234 is a server-side request forgery vulnerability in the CVAT software maintained by Intel(R) before version 2.0.1.
CVE-2022-27234 may allow an authenticated user to potentially enable information disclosure via network access.
CVE-2022-27234 has a severity rating of 6.5 (medium).
To fix CVE-2022-27234, update the CVAT software to version 2.0.1 or later, as provided by Intel(R).
More information about CVE-2022-27234 can be found on Intel's security advisory page: http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00762.html