CVE-2025-22446

MEDIUM Year: 2025
CVSS v3 Score
4.6
Medium
Weakness Type
CWE-326
View all →

Vulnerability Description

Inadequate encryption strength for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

Related Vulnerabilities

CVE-2017-2399

MEDIUM
CVSS:4.6(Medium)

An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "Pasteboard" component. It allows physically proximate attackers to read the pasteboard by levera...

CWE-3262017

CVE-2018-21080

MEDIUM
CVSS:4.6(Medium)

An issue was discovered on Samsung mobile devices with N(7.x) software. A physically proximate attacker wielding a magnet can activate NFC to bypass the lockscreen. The Samsung ID is SVE-2017-10897 (M...

CWE-3262018

CVE-2020-8761

MEDIUM
CVSS:4.6(Medium)

Inadequate encryption strength in subsystem for Intel(R) CSME versions before 13.0.40 and 13.30.10 may allow an unauthenticated user to potentially enable information disclosure via physical access.

CWE-3262020

CVE-2016-3034

MEDIUM
CVSS:4.4(Medium)

IBM AppScan Source uses a one-way hash without salt to encrypt highly sensitive information, which could allow a local attacker to decrypt information more easily.

CWE-3262016

CVE-2020-9128

MEDIUM
CVSS:4.4(Medium)

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak.

CWE-3262020

CVE-2021-38983

MEDIUM
CVSS:4.4(Medium)

IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 21279...

CWE-3262021