Lucene search

[email protected]NVD:CVE-2022-21793

HistoryAug 18, 2022 - 8:15 p.m.

CVE-2022-21793

2022-08-1820:15:10

[email protected]

web.nvd.nist.gov

cve-2022-21793

control flow management

intel ethernet

vmware

denial of service

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

12.6%

JSON

Insufficient control flow management in the Intel® Ethernet 500 Series Controller drivers for VMWare before version 1.11.4.0 and in the Intel® Ethernet 700 Series Controller drivers for VMWare before version 2.1.5.0 may allow an authenticated user to potentially enable a denial of service via local access.

Affected configurations

NVD

Node

vmwareixgbenRange<1.11.4.0

AND

intel82599_10_gigabit_ethernet_controllerMatch-

intelethernet_controller_x540Match-

intelethernet_controller_x550Match-

intelethernet_controller_x552Match-

Node

vmwarei40enRange<2.1.5.0

AND

intelethernet_controller_x710Match-

intelethernet_controller_x722Match-

intelethernet_controller_xl710Match-

intelethernet_controller_xxv710Match-

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00650.html

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2022-21793

prion1 intel1 cve1 cvelist1