CVE-2025-22446 is a vulnerability identified in the Edge Orchestrator software component of the Intel® Tiber™ Edge Platform, disclosed on May 13, 2025. The core issue stems from inadequate encryption strength within the software, which compromises the protection of sensitive operations or data exchanges. This weakness can be exploited by an authenticated user who has adjacent network access—meaning they are on the same local network segment or have similar proximity—to escalate their privileges within the system. The vulnerability does not require additional authentication beyond the initial user credentials, nor does it require user interaction, making it more straightforward to exploit once access is gained. The CVSS 4.0 vector indicates low attack complexity and no requirement for user interaction, but the attack vector is adjacent network, limiting remote exploitation. The impact primarily affects confidentiality and integrity, with limited impact on availability. The scope is limited to the Edge Orchestrator software on the Intel Tiber platform, which is used in edge computing environments to manage distributed edge devices and workloads. No known exploits have been reported in the wild, and no patches or mitigation links were provided at the time of disclosure. The vulnerability was reserved in January 2025 and published in May 2025, with enrichment from CISA indicating recognition of its potential impact on critical infrastructure. Given the nature of the platform, this vulnerability could affect industrial, telecommunications, and enterprise edge deployments that rely on Intel Tiber hardware and orchestration software.

The vulnerability allows an authenticated user with adjacent network access to escalate privileges, potentially gaining unauthorized control or access to sensitive functions within the Edge Orchestrator software. This can lead to unauthorized modification or disclosure of data managed by the orchestrator, undermining the confidentiality and integrity of edge computing operations. Since edge platforms often manage critical infrastructure and distributed workloads, exploitation could disrupt operational technology environments or compromise data integrity in industrial, telecommunications, or enterprise settings. However, the attack vector being adjacent network limits remote exploitation, reducing the attack surface to local or network-proximate adversaries. The medium CVSS score reflects moderate risk, but the impact could be significant in environments where edge orchestrator privileges control critical processes or sensitive data. The lack of known exploits suggests limited current threat activity, but the vulnerability remains a concern for organizations deploying Intel Tiber Edge solutions.

Organizations should implement strict network segmentation to limit adjacent network access to the Edge Orchestrator software, ensuring only trusted and authenticated users can reach it. Deploying strong access controls and monitoring for unusual privilege escalation attempts within the edge environment is critical. Intel and vendors should prioritize releasing patches or updates that strengthen encryption mechanisms within the Edge Orchestrator software. Until patches are available, consider deploying compensating controls such as enhanced logging, anomaly detection, and restricting administrative access to the orchestrator. Regularly audit user privileges and network configurations to minimize the risk of lateral movement by attackers. Additionally, organizations should stay informed through Intel security advisories and CISA updates for any new developments or exploit reports related to this vulnerability.