cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-22184,https://securityvulnerability.io/vulnerability/CVE-2024-22184,Uncontrolled Search Path Vulnerability in Intel Quartus Prime Pro Edition Software,"The Intel Quartus Prime Pro Edition Design Software prior to version 24.1 is susceptible to an uncontrolled search path vulnerability. This flaw allows authenticated users with local access to potentially escalate their privileges. Users are advised to upgrade to the latest version to mitigate this security risk. For more information, visit the Intel Security Advisory.",Intel,Intel(r) Quartus(r) Prime Pro Edition Design Software,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-08-14T13:45:18.341Z,0
CVE-2024-21777,https://securityvulnerability.io/vulnerability/CVE-2024-21777,Uncontrolled Search Path in Intel Quartus Prime Pro Edition Software,"The Intel Quartus Prime Pro Edition Design Software prior to version 23.4 is susceptible to an uncontrolled search path vulnerability. This flaw allows an authenticated user with local access to potentially exploit the system, leading to escalation of privileges. Users are advised to update their software to address this security issue.",Intel,Intel(r) Quartus(r) Prime Pro Edition Design Software,7.3,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-16T20:47:06.188Z,0
CVE-2023-24478,https://securityvulnerability.io/vulnerability/CVE-2023-24478,Insufficient Randomness Vulnerability in Intel Quartus Prime Pro Edition for Linux,"An insufficient randomness vulnerability exists in Intel Quartus Prime Pro Edition for Linux prior to version 22.4. This flaw allows authenticated users to potentially exploit the software, leading to information disclosure via local access. The lack of properly random values could enable attackers to glean sensitive data, emphasizing the need for organizations to update to the latest version to mitigate associated risks.",Intel,Intel Agilex(r) Software Included As Part Of Intel(r) Quartus(r) Prime Pro Edition For Linux,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-08-15T13:15:00.000Z,0
CVE-2023-24016,https://securityvulnerability.io/vulnerability/CVE-2023-24016,Uncontrolled Search Path Vulnerability in Intel Quartus Prime Software,"An uncontrolled search path element vulnerability exists in some versions of Intel(R) Quartus(R) Prime Pro and Standard edition software for Linux. This issue may allow an authenticated user to escalate privileges through local access, potentially compromising system integrity and security. Users are advised to review their configurations and apply any recommended updates or mitigations.",Intel,Intel(R) Quartus(R) Prime Pro and Standard edition software for linux,7.3,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-08-11T03:15:00.000Z,0
CVE-2022-41693,https://securityvulnerability.io/vulnerability/CVE-2022-41693,Uncontrolled Search Path Vulnerability in Intel Quartus Prime Pro Software,"The Intel Quartus Prime Pro software prior to version 22.3 is vulnerable to an uncontrolled search path flaw. This issue could allow an authenticated user to exploit local access, potentially leading to elevation of privileges within the system. It is crucial for users to update to the latest version to mitigate the risks associated with this vulnerability.",Intel,Intel(r) Quartus(r) Prime Pro Edition Software,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-05-10T13:17:22.891Z,0
CVE-2022-34157,https://securityvulnerability.io/vulnerability/CVE-2022-34157,Improper Access Control in Intel FPGA SDK for OpenCL with Quartus Prime Pro Edition,"The Intel FPGA SDK for OpenCL, specifically with the Quartus Prime Pro Edition software prior to version 22.1, contains a vulnerability related to improper access control. This flaw enables authenticated users to potentially escalate their privileges through local access. Malicious actors could exploit this weakness to gain unauthorized control over sensitive system resources, posing a significant risk to operational integrity.",Intel,Intel(r) Fpga Sdk For Opencl(tm) With Intel(r) Quartus(r) Prime Pro Edition Software,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-16T20:00:09.598Z,0
CVE-2022-37329,https://securityvulnerability.io/vulnerability/CVE-2022-37329,Uncontrolled Search Path in Intel Quartus Prime Pro and Standard Edition Software,"An uncontrolled search path vulnerability exists in specific Intel Quartus Prime Pro and Standard Edition software versions. This flaw could allow an authenticated user with local access to trigger a privilege escalation scenario, potentially compromising system integrity. Users are encouraged to apply the necessary patches to mitigate any risks associated with this vulnerability. For further details, refer to the Intel security advisory.",Intel,Intel(r) Quartus(r) Prime Pro And Standard Edition Software,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-16T20:00:09.070Z,0
CVE-2022-26888,https://securityvulnerability.io/vulnerability/CVE-2022-26888,Cross-Site Scripting in Intel Quartus Prime Software,"The Intel Quartus Prime Pro and Standard Edition software is susceptible to a cross-site scripting vulnerability. This vulnerability can be exploited by an authenticated user with local access, potentially leading to the unauthorized disclosure of sensitive information. Proper input validation and sanitization measures are crucial to mitigate the risk associated with this vulnerability.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,2.8,LOW,0.000539999979082495,false,,false,false,false,,,false,false,,2023-02-16T19:59:55.687Z,0
CVE-2022-32570,https://securityvulnerability.io/vulnerability/CVE-2022-32570,Improper Authentication Vulnerability in Intel Quartus Prime Software,"The Intel Quartus Prime Pro and Standard edition software is susceptible to an improper authentication vulnerability that can be exploited by an authenticated user. This flaw may allow an attacker to escalate privileges, leading to unauthorized access and potential manipulation of the system. Vulnerable users are advised to apply updates and follow best security practices to mitigate risks. For more detailed information, please visit the Intel security advisory.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-16T19:59:55.162Z,0
CVE-2022-26840,https://securityvulnerability.io/vulnerability/CVE-2022-26840,Escalation of Privilege in Intel Quartus Prime Software,"The Intel Quartus Prime software, encompassing both Pro and Standard editions, contains an improper neutralization vulnerability that could be exploited by an authenticated user. This flaw allows for potential escalation of privilege through local access, enabling unauthorized actions within the software environment.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,7.3,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-16T19:59:54.631Z,0
CVE-2022-33902,https://securityvulnerability.io/vulnerability/CVE-2022-33902,Insufficient Control Flow Management in Intel Quartus Prime Software,"Insufficient control flow management in the Intel Quartus Prime Pro and Standard Edition software can potentially allow an authenticated user to escalate privileges through local access. This vulnerability raises significant security concerns, enabling unauthorized actions within the software environment. Users of the affected versions are advised to remain vigilant and implement necessary security measures.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,7.3,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-16T19:59:54.087Z,0
CVE-2022-33892,https://securityvulnerability.io/vulnerability/CVE-2022-33892,Path Traversal Vulnerability in Intel Quartus Prime Software,"A path traversal vulnerability in Intel Quartus Prime Pro and Standard edition software enables an authenticated user to manipulate file paths, potentially leading to privilege escalation through local access. This flaw may allow users to access restricted directories and files, thus compromising the integrity and confidentiality of the system.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,7.3,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-16T19:59:53.532Z,0
CVE-2022-27233,https://securityvulnerability.io/vulnerability/CVE-2022-27233,XML Injection in Intel Quartus Prime Programmer,"An XML injection vulnerability in the Quartus Prime Programmer found in Intel's Quartus Prime Pro and Standard editions could allow unauthenticated users to exploit this flaw. Through network access, attackers might gain unauthorized access to sensitive information, potentially leading to data disclosure. It is imperative for users to implement security measures to safeguard their systems against exploitation of this vulnerability.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,7.5,HIGH,0.0020000000949949026,false,,false,false,false,,,false,false,,2022-11-11T15:48:42.749Z,0
CVE-2022-21220,https://securityvulnerability.io/vulnerability/CVE-2022-21220,Improper XML External Entity Handling in Intel Quartus Prime Pro Edition,"An improper restriction of XML external entity vulnerability in Intel Quartus Prime Pro Edition before version 21.3 may allow an authenticated user to exploit this flaw, potentially leading to privilege escalation through local access. This security issue emphasizes the importance of implementing proper XML parsing configurations to prevent unauthorized actions within sensitive environments.",Intel,Intel(r) Quartus(r) Prime Pro Edition,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-02-09T22:04:56.000Z,0
CVE-2022-21205,https://securityvulnerability.io/vulnerability/CVE-2022-21205,Improper XML Entity Reference in Intel Quartus Prime Pro Edition,The DSP Builder Pro for Intel Quartus Prime Pro Edition has a vulnerability due to improper handling of XML external entities that can be exploited by unauthenticated users. This issue may enable attackers to gain unauthorized access to sensitive information via network interactions. Users are advised to update to version 21.3 or later to mitigate this risk.,Intel,Intel(r) Quartus(r) Prime Pro Edition,7.5,HIGH,0.0016799999866634607,false,,false,false,false,,,false,false,,2022-02-09T22:04:55.000Z,0
CVE-2022-21204,https://securityvulnerability.io/vulnerability/CVE-2022-21204,Improper Permissions in Intel Quartus Prime Pro Edition Software,"The vulnerability in Intel Quartus Prime Pro Edition allows an authenticated user to potentially escalate privileges through local access due to improper permissions. This flaw affects versions prior to 21.3 and could be exploited if the attacker has access to the system, making it crucial for users to update to the latest version to protect against potential risks.",Intel,Intel(r) Quartus(r) Prime Pro Edition,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-02-09T22:04:52.000Z,0
CVE-2021-44454,https://securityvulnerability.io/vulnerability/CVE-2021-44454,Improper Input Validation in Intel Quartus Prime Pro Edition,"An improper input validation issue found in the Intel Quartus Prime Pro Edition software prior to version 21.3 permits an authenticated user to potentially escalate their privileges through local access. This could allow unauthorized actions within the system, highlighting the importance of updating to the latest version for security.",Intel,Intel(r) Quartus(r) Prime Pro Edition,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-02-09T22:04:50.000Z,0
CVE-2022-21174,https://securityvulnerability.io/vulnerability/CVE-2022-21174,Improper Access Control in Intel Quartus Prime Pro Edition Software,"An improper access control vulnerability exists in a third-party component of Intel Quartus Prime Pro Edition prior to version 21.3. This flaw allows an authenticated user to exploit the issue to potentially escalate privileges through local access, posing risks to system security and integrity.",Intel,Intel(r) Quartus(r) Prime Pro Edition,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-02-09T22:04:49.000Z,0
CVE-2020-24481,https://securityvulnerability.io/vulnerability/CVE-2020-24481,Insecure Permissions in Intel Quartus Prime Software,"The Intel Quartus Prime Pro and Standard Edition Software contains insecure inherited permissions, allowing authenticated users to potentially escalate their privileges through local access. This vulnerability poses significant risks as it may enable unauthorized access to sensitive functions within the software, leading to further exploitation. Users are encouraged to apply security patches provided by Intel to mitigate potential threats.",Intel,Intel(r) Quartus Prime Pro And Standard Edition Software,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-02-17T13:45:10.000Z,0
CVE-2020-24454,https://securityvulnerability.io/vulnerability/CVE-2020-24454,Improper XML External Entity Restrictions in Intel Quartus Prime Editions,"The vulnerability arises from improper handling of XML External Entity (XXE) references in the Intel Quartus Prime Pro and Standard Editions. This flaw allows an unauthenticated user to exploit the system via network access, potentially leading to unauthorized information disclosure. Users of affected versions should upgrade to the latest releases to mitigate the security risk.",Intel,Intel(r) Quartus(r) Prime Pro Edition And Intel(r) Quartus(r) Prime Standard Edition,7.5,HIGH,0.0022100000642240047,false,,false,false,false,,,false,false,,2020-11-12T18:56:24.000Z,0
CVE-2019-14603,https://securityvulnerability.io/vulnerability/CVE-2019-14603,Privilege Escalation Vulnerability in Intel Quartus Prime Pro Edition,"A vulnerability exists due to improper permissions in the installer for Intel Quartus Prime Pro Edition, allowing an authenticated user to potentially escalate privileges with local access. This could enable unauthorized access to sensitive system functionalities, posing a risk to system integrity and data security. Users are encouraged to upgrade to version 19.3 or later to mitigate exploitation risks.",Intel,Intel® Quartus® Prime Pro Edition,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-12-16T19:09:07.000Z,0
CVE-2019-14604,https://securityvulnerability.io/vulnerability/CVE-2019-14604,Null Pointer Dereference in Intel Quartus Prime Pro Edition Driver,"A null pointer dereference issue exists in the FPGA kernel driver for Intel Quartus Prime Pro Edition prior to version 19.3. This vulnerability may allow an authenticated user to trigger a denial of service condition via local access, potentially leading to system instability.",Intel,Intel® Quartus® Prime Pro Edition,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-12-16T19:08:19.000Z,0