Lucene search

F5F5:K000134782

HistoryMay 25, 2023 - 12:00 a.m.

K000134782 : Intel Virtual RAID on CPU vulnerabilities CVE-2022-29919, CVE-2022-30338, CVE-2022-29508, CVE-2022-25976

2023-05-2500:00:00

my.f5.com

intel virtual raid

cpu vulnerabilities

privilege escalation

local access

denial of service

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Security Advisory Description

CVE-2022-29919

Use after free in the Intel® VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-30338

Incorrect default permissions in the Intel® VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-29508

Null pointer dereference in the Intel® VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-25976

Improper input validation in the Intel® VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access.

Impact

There is no impact; F5 products are not affected by this vulnerability.

CPENameOperatorVersion
f5 ssl orchestratoreq14.1.0
f5 ssl orchestratoreq14.1.2
f5 ssl orchestratoreq14.1.4
f5 ssl orchestratoreq15.1.0
f5 ssl orchestratoreq15.1.1
f5 ssl orchestratoreq16.1.0
f5 ssl orchestratoreq16.1.1
f5 ssl orchestratoreq16.1.3
f5 ssl orchestratoreq17.0.0
f5 ssl orchestratoreq17.1.0

Name	Operator	Version
f5 ssl orchestrator	eq	14.1.0
f5 ssl orchestrator	eq	14.1.2
f5 ssl orchestrator	eq	14.1.4
f5 ssl orchestrator	eq	15.1.0
f5 ssl orchestrator	eq	15.1.1
f5 ssl orchestrator	eq	16.1.0
f5 ssl orchestrator	eq	16.1.1
f5 ssl orchestrator	eq	16.1.3
f5 ssl orchestrator	eq	17.0.0
f5 ssl orchestrator	eq	17.1.0

Rows per page:

1-10 of 4131