Rewterz Threat Advisory – Intel Quartus Prime Pro and Intel Quartus Prime Standard Vulnerabilities

Rewterz Threat Advisory – Multiple Intel Products Vulnerabilities

November 11, 2022

Rewterz Threat Alert – Black Basta Ransomware – Active IOCs

November 11, 2022

Rewterz Threat Advisory – Intel Quartus Prime Pro and Intel Quartus Prime Standard Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2022-27233 CVSS:6.5
Intel Quartus Prime Pro and Intel Quartus Prime Standard allow a remote attacker to obtain sensitive information, caused by XML injection. An attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

CVE-2022-27187 CVSS:6.7
Intel Quartus Prime Standard could allow a remote authenticated attacker to gain elevated privileges on the system, caused by an uncontrolled search path element. An attacker could exploit this vulnerability to gain elevated privileges.

Impact

Information Disclosure
Privilege Escalation

Indicators Of Compromise

CVE

CVE-2022-27233
CVE-2022-27187

Affected Vendors

Intel

Affected Products

Intel Quartus Prime Pro 19.2
Intel Quartus Prime Pro 21.2
Intel Quartus Prime Standard 20.0
Intel Quartus Prime Standard 21.0

Remediation

Refer to INTEL Security Advisory for patch, upgrade or suggested workaround information.
INTEL Security Advisory

Rewterz Threat Advisory – Multiple Intel Products Vulnerabilities

Rewterz Threat Alert – Black Basta Ransomware – Active IOCs

Rewterz Threat Advisory – Intel Quartus Prime Pro and Intel Quartus Prime Standard Vulnerabilities

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan