Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-36392
HistoryAug 11, 2023 - 3:15 a.m.

CVE-2022-36392

2023-08-1103:15:13
CWE-20
[email protected]
web.nvd.nist.gov
36
cve-2022-36392
intel
amt
standard manageability
firmware
input validation
denial of service
nvd

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.7%

JSON

Improper input validation in some firmware for Intelยฎ AMT and Intelยฎ Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel ยฎ CSME may allow an unauthenticated user to potentially enable denial of service via network access.

Affected configurations

NVD
Node
intelconverged_security_management_engine_firmwareRange<11.12.94
AND
intelc232Match-
OR
intelc236Match-
OR
intelc420Match-
OR
intelc422Match-
OR
intelcm236Match-
OR
intelcm238Match-
OR
intelx299Match-
Node
intelconverged_security_management_engine_firmwareRange<11.8.94
AND
intelb150Match-
OR
intelb250Match-
OR
intelcore_i3-8100Match-
OR
intelcore_i3-8100bMatch-
OR
intelcore_i3-8100hMatch-
OR
intelcore_i3-8100tMatch-
OR
intelcore_i3-8109uMatch-
OR
intelcore_i3-8130uMatch-
OR
intelcore_i3-8140uMatch-
OR
intelcore_i3-8145uMatch-
OR
intelcore_i3-8145ueMatch-
OR
intelcore_i3-8300Match-
OR
intelcore_i3-8300tMatch-
OR
intelcore_i3-8350kMatch-
OR
intelcore_i5-8200yMatch-
OR
intelcore_i5-8210yMatch-
OR
intelcore_i5-8250uMatch-
OR
intelcore_i5-8257uMatch-
OR
intelcore_i5-8259uMatch-
OR
intelcore_i5-8260uMatch-
OR
intelcore_i5-8265uMatch-
OR
intelcore_i5-8269uMatch-
OR
intelcore_i5-8279uMatch-
OR
intelcore_i5-8300hMatch-
OR
intelcore_i5-8305gMatch-
OR
intelcore_i5-8310yMatch-
OR
intelcore_i5-8350uMatch-
OR
intelcore_i5-8365uMatch-
OR
intelcore_i5-8365ueMatch-
OR
intelcore_i5-8400Match-
OR
intelcore_i5-8400bMatch-
OR
intelcore_i5-8400hMatch-
OR
intelcore_i5-8400tMatch-
OR
intelcore_i5-8500Match-
OR
intelcore_i5-8500bMatch-
OR
intelcore_i5-8500tMatch-
OR
intelcore_i5-8600Match-
OR
intelcore_i5-8600kMatch-
OR
intelcore_i5-8600tMatch-
OR
intelcore_i7\+8700Match-
OR
intelcore_i7-8086kMatch-
OR
intelcore_i7-8500yMatch-
OR
intelcore_i7-8550uMatch-
OR
intelcore_i7-8557uMatch-
OR
intelcore_i7-8559uMatch-
OR
intelcore_i7-8565uMatch-
OR
intelcore_i7-8569uMatch-
OR
intelcore_i7-8650uMatch-
OR
intelcore_i7-8665uMatch-
OR
intelcore_i7-8665ueMatch-
OR
intelcore_i7-8700Match-
OR
intelcore_i7-8700bMatch-
OR
intelcore_i7-8700kMatch-
OR
intelcore_i7-8700tMatch-
OR
intelcore_i7-8705gMatch-
OR
intelcore_i7-8706gMatch-
OR
intelcore_i7-8709gMatch-
OR
intelcore_i7-8750hMatch-
OR
intelcore_i7-8809gMatch-
OR
intelcore_i7-8850hMatch-
OR
intelcore_i9-8950hkMatch-
OR
intelcore_m3-8100yMatch-
OR
intelh110Match-
OR
intelh170Match-
OR
intelh270Match-
OR
intelhm170Match-
OR
intelhm175Match-
OR
intelq150Match-
OR
intelq170Match-
OR
intelq250Match-
OR
intelq270Match-
OR
intelqm170Match-
OR
intelqm175Match-
OR
intelx299Match-
OR
intelz170Match-
OR
intelz270Match-
Node
intelconverged_security_management_engine_firmwareRange<12.0.93
AND
intelb360Match-
OR
intelb365Match-
OR
intelc242Match-
OR
intelc246Match-
OR
intelceleron_4205uMatch-
OR
intelceleron_4305uMatch-
OR
intelceleron_4305ueMatch-
OR
intelcm246Match-
OR
intelcore_i3-8100Match-
OR
intelcore_i3-8100bMatch-
OR
intelcore_i3-8100hMatch-
OR
intelcore_i3-8100tMatch-
OR
intelcore_i3-8109uMatch-
OR
intelcore_i3-8130uMatch-
OR
intelcore_i3-8140uMatch-
OR
intelcore_i3-8145uMatch-
OR
intelcore_i3-8145ueMatch-
OR
intelcore_i3-8300Match-
OR
intelcore_i3-8300tMatch-
OR
intelcore_i3-8350kMatch-
OR
intelcore_i5-8200yMatch-
OR
intelcore_i5-8210yMatch-
OR
intelcore_i5-8250uMatch-
OR
intelcore_i5-8257uMatch-
OR
intelcore_i5-8259uMatch-
OR
intelcore_i5-8260uMatch-
OR
intelcore_i5-8265uMatch-
OR
intelcore_i5-8269uMatch-
OR
intelcore_i5-8279uMatch-
OR
intelcore_i5-8300hMatch-
OR
intelcore_i5-8305gMatch-
OR
intelcore_i5-8310yMatch-
OR
intelcore_i5-8350uMatch-
OR
intelcore_i5-8365uMatch-
OR
intelcore_i5-8365ueMatch-
OR
intelcore_i5-8400Match-
OR
intelcore_i5-8400bMatch-
OR
intelcore_i5-8400hMatch-
OR
intelcore_i5-8400tMatch-
OR
intelcore_i5-8500Match-
OR
intelcore_i5-8500bMatch-
OR
intelcore_i5-8500tMatch-
OR
intelcore_i5-8600Match-
OR
intelcore_i5-8600kMatch-
OR
intelcore_i5-8600tMatch-
OR
intelcore_i7\+8700Match-
OR
intelcore_i7-8086kMatch-
OR
intelcore_i7-8500yMatch-
OR
intelcore_i7-8550uMatch-
OR
intelcore_i7-8557uMatch-
OR
intelcore_i7-8559uMatch-
OR
intelcore_i7-8565uMatch-
OR
intelcore_i7-8569uMatch-
OR
intelcore_i7-8650uMatch-
OR
intelcore_i7-8665uMatch-
OR
intelcore_i7-8665ueMatch-
OR
intelcore_i7-8700Match-
OR
intelcore_i7-8700bMatch-
OR
intelcore_i7-8700kMatch-
OR
intelcore_i7-8700tMatch-
OR
intelcore_i7-8705gMatch-
OR
intelcore_i7-8706gMatch-
OR
intelcore_i7-8709gMatch-
OR
intelcore_i7-8750hMatch-
OR
intelcore_i7-8809gMatch-
OR
intelcore_i7-8850hMatch-
OR
intelcore_i9-8950hkMatch-
OR
intelcore_m3-8100yMatch-
OR
intelh310Match-
OR
intelh370Match-
OR
intelhm370Match-
OR
intelpentium_gold_5405uMatch-
OR
intelq370Match-
OR
intelqm370Match-
OR
intelz370Match-
OR
intelz390Match-
Node
intelconverged_security_management_engine_firmwareRange<14.1.70
OR
intelconverged_security_management_engine_firmwareRange14.5.0โ€“14.5.50
AND
intelb460Match-
OR
intelh410Match-
OR
intelh420eMatch-
OR
intelh470Match-
OR
intelhm470Match-
OR
intelq470Match-
OR
intelq470eMatch-
OR
intelqm480Match-
OR
intelw480Match-
OR
intelw480eMatch-
OR
intelwm490Match-
OR
intelz490Match-
Node
intelconverged_security_management_engine_firmwareRange<15.0.45
AND
intelb560Match-
OR
intelh510Match-
OR
intelh570Match-
OR
intelhm570Match-
OR
intelhm570eMatch-
OR
intelq570Match-
OR
intelqm580Match-
OR
intelqm580eMatch-
OR
intelrm590eMatch-
OR
intelw580Match-
OR
intelwm590Match-
OR
intelz590Match-
Node
intelconverged_security_management_engine_firmwareRange<16.1.27
AND
intelb660Match-
OR
intelh610Match-
OR
intelh610eMatch-
OR
intelh670Match-
OR
intelhm670Match-
OR
intelq670Match-
OR
intelq670eMatch-
OR
intelr680eMatch-
OR
intelw680Match-
OR
intelwm690Match-
OR
intelz690Match-

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) AMT and Intel(R) Standard Manageability in Intel (R) CSME",
    "versions": [
      {
        "version": "before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

cvelist 1
nvd 1
prion 1
hp 1
intel 1
cvelist
cvelist
CVE-2022-36392
2023-08-11 02:36:55
nvd
nvd
CVE-2022-36392
2023-08-11 03:15:13
prion
prion
Input validation
2023-08-11 03:15:00
hp
hp
Intel 2023.3 IPU โ€“ Chipset Firmware August 2023 Security Update
2023-08-08 00:00:00
intel
intel
2023.3 IPU - Intelยฎ Chipset Firmware Advisory
2024-01-12 00:00:00

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.7%

JSON
Related for CVE-2022-36392
cvelist1nvd1prion1hp1intel1