CVE-2025-20624

Vulnerability

Analysis

CVE-2025-20624 is an information disclosure vulnerability in the Edge Orchestrator software component of Intel(R) Tiber™ Edge Platform. The issue stems from improper handling of sensitive data, allowing exposure to an unauthorized actor despite authentication requirements. The root cause lies in insufficient access controls or data protection mechanisms within the orchestrator's communication or storage routines [1].

Exploitation

Conditions

An attacker must first obtain valid authentication credentials for the Edge Orchestrator instance. Exploitation requires adjacent network access, meaning the attacker must be on the same layer-2 network segment (e.g., same Ethernet broadcast domain or Wi-Fi network) as the affected system. No user interaction is needed beyond the initial authentication step. The attack complexity is low, and no special privileges beyond authentication are mentioned [1].

Impact

A successful attack leads to information disclosure, where the attacker can retrieve sensitive data that the orchestrator was meant to protect. While the advisory does not specify the type of information exposed, it could include configuration details, credentials, or operational data. The CVSS v3.1 base score is 5.7 (Medium), with the Confidentiality impact rated as High, while Integrity and Availability are unaffected [1].

Mitigation

Intel has released a security advisory (INTEL-SA-01239) with guidance for this vulnerability. Affected users should apply the recommended fix, which likely involves updating the Edge Orchestrator software to a patched version. No workarounds have been publicly documented. Organisations using Tiber Edge Platform should review the advisory and update their deployments accordingly [1].