Lucene search
IntelCVELIST:CVE-2022-24379HistoryNov 14, 2023 - 7:05 p.m.
CVE-2022-24379
2023-11-1419:05:10
CWE-20
intel
www.cve.org
5
input validation
intel server system
bios
privileged user
escalation of privilege
local access
CVSS3
7.5
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Improper input validation in some Intelยฎ Server System M70KLP Family BIOS firmware before version 01.04.0029 may allow a privileged user to potentially enable escalation of privilege via local access.
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) Server System M70KLP Family BIOS firmware",
"versions": [
{
"version": "before version 01.04.0029",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2022-24379
2023-11-14 19:15:10
prion
prion
Input validation
2023-11-14 19:15:00
vulnrichment
vulnrichment
CVE-2022-24379
2023-11-14 19:05:10
cve
cve
CVE-2022-24379
2023-11-14 19:15:10
intel
intel
Intelยฎ Server Board and Server System Firmware Advisory
2023-11-14 00:00:00
CVSS3
7.5
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2022-24379