Primary

Context

Intel IPP Cryptography Library Weak Initialization Vector Vulnerability Allowing Information Disclosure

Vulnerability

Patched

A vulnerability exists in the Intel IPP Cryptography software library prior to version 2021.5, where weak initialization vectors could be generated. This flaw may enable an unauthenticated user to potentially disclose information through local access.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure.

Remediation

Users are advised to update the Intel IPP Cryptography software to version 2021.5 or later. The latest version can be downloaded from the Intel IPP Cryptography GitHub releases page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel IPP Cryptography Library Weak Initialization Vector Vulnerability Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Intel IPP Cryptography

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating