CVE-2025-24840

Medium CVSS 5.8

Overview

Improper access control for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CWE: CWE-284 Published: 2025-08-12T17:15:35.183

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.8 (MEDIUM)
Detected tags: misconfiguration, unauth_access (tag impact: HIGH)

Recommended actions:

Enforce authentication/authorization; reduce default endpoint exposure.

Overview

Recommended tools

Tags