CVE-2022-36392
8.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Summary
Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Intel(R) AMT and Intel(R) Standard Manageability in Intel (R) CSME | before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 | affected |
Weaknesses
- denial of service
- CWE-20: Improper input validation
ADP Enrichment
CVE Program Container
Additional References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html
- https://security.netapp.com/advisory/ntap-20230824-0002/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html
- https://security.netapp.com/advisory/ntap-20230824-0002/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.