CVE-2025-27707

LOW

2.6

Descricao

Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

Detalhes CVE

Pontuacao CVSS v3.12.6

SeveridadeLOW

Vetor CVSSCVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Vetor de ataqueADJACENT_NETWORK

ComplexidadeHIGH

Privilegios necessariosLOW

Interacao do usuarioNONE

Publicado8/12/2025

Ultima modificacao8/13/2025

Fontenvd

Avistamentos honeypot0

Fraquezas (CWE)

CWE-200

Referencias

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01317.html(secure@intel.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.