CVE-2022-21205

Summary

Improper restriction of XML external entity reference in DSP Builder Pro for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an unauthenticated user to potentially enable information disclosure via network access.

Affected Software

VendorProductVersion RangeStatus
n/aIntel(R) Quartus(R) Prime Pro Editionbefore version 21.3affected

Weaknesses

  • information disclosure

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References