Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-36382
HistoryFeb 16, 2023 - 9:15 p.m.

CVE-2022-36382

2023-02-1621:15:13
CWE-787
[email protected]
web.nvd.nist.gov
24
cve-2022-36382
out-of-bounds write
intel ethernet
firmware
denial of service
nvd

6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

4.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Out-of-bounds write in firmware for some Intelยฎ Ethernet Network Controllers and Adapters E810 Series before version 1.7.0.8 and some Intelยฎ Ethernet 700 Series Controllers and Adapters before version 9.101 may allow a privileged user to potentially enable denial of service via local access.

Affected configurations

NVD
Node
intelethernet_network_controller_e810-cam1Match-
AND
intelethernet_network_controller_e810-cam1_firmwareRange<1.7.0.8
Node
intelethernet_network_controller_e810-cam2Match-
AND
intelethernet_network_controller_e810-cam2_firmwareRange<1.7.0.8
Node
intelethernet_network_controller_e810-xxvam2Match-
AND
intelethernet_network_controller_e810-xxvam2_firmwareRange<1.7.0.8
Node
intelethernet_controller_x710-am2_firmwareRange<9.101
AND
intelethernet_controller_x710-am2Match-
Node
intelethernet_controller_x710-bm2_firmwareRange<9.101
AND
intelethernet_controller_x710-bm2Match-
Node
intelethernet_controller_xl710-am1_firmwareRange<9.101
AND
intelethernet_controller_xl710-am1Match-
Node
intelethernet_controller_xl710-am2_firmwareRange<9.101
AND
intelethernet_controller_xl710-am2Match-
Node
intelethernet_controller_xl710-bm1_firmwareRange<9.101
AND
intelethernet_controller_xl710-bm1Match-
Node
intelethernet_controller_xl710-bm2_firmwareRange<9.101
AND
intelethernet_controller_xl710-bm2Match-
Node
intelethernet_controller_xxv710-am1_firmwareRange<9.101
AND
intelethernet_controller_xxv710-am1Match-
Node
intelethernet_controller_xxv710-am2_firmwareRange<9.101
AND
intelethernet_controller_xxv710-am2Match-
Node
intelethernet_converged_network_adapter_x710-da2_firmwareRange<9.101
AND
intelethernet_converged_network_adapter_x710-da2Match-
Node
intelethernet_converged_network_adapter_x710-da4_firmwareRange<9.101
AND
intelethernet_converged_network_adapter_x710-da4Match-
Node
intelethernet_converged_network_adapter_xl710-da1_firmwareRange<9.101
AND
intelethernet_converged_network_adapter_xl710-da1Match-
Node
intelethernet_converged_network_adapter_xl710-da2_firmwareRange<9.101
AND
intelethernet_converged_network_adapter_xl710-da2Match-

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) Ethernet Network Controllers and Adapters E810 Series and some Intel(R) Ethernet 700 Series Controllers and Adapters",
    "versions": [
      {
        "version": "before version 1.7.0.8 and before version 9.101",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

nvd 1
prion 1
cvelist 1
intel 1
nvd
nvd
CVE-2022-36382
2023-02-16 21:15:13
prion
prion
Design/Logic Flaw
2023-02-16 21:15:00
cvelist
cvelist
CVE-2022-36382
2023-02-16 20:00:26
intel
intel
Intelยฎ Ethernet Controllers and Adaptersย Advisory
2023-02-14 00:00:00

6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

4.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CVE-2022-36382
nvd1prion1cvelist1intel1