Lucene search
HistoryNov 11, 2022 - 4:15 p.m.
CVE-2022-26845
intel amt
firmware
authentication
privilege escalation
cve-2022-26845
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
50.1%
Improper authentication in firmware for Intelยฎ AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
Affected configurations
Node
intelactive_management_technology_firmwareRange<11.8.93
ORintelactive_management_technology_firmwareRange11.12.0โ11.12.93
ORintelactive_management_technology_firmwareRange11.22.0โ11.22.93
ORintelactive_management_technology_firmwareRange12.0โ12.0.92
ORintelactive_management_technology_firmwareRange14.1โ14.1.67
ORintelactive_management_technology_firmwareRange15.0โ15.0.42
ORintelactive_management_technology_firmwareRange16.1.0โ16.1.25
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | active_management_technology_firmware | * | cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-26845
2022-11-11 15:48:35
prion
prion
Authentication flaw
2022-11-11 16:15:00
cve
cve
CVE-2022-26845
2022-11-11 16:15:13
hp
hp
Intel 2022.3 IPU - Chipset Firmware November 2022 Security Update
2022-11-09 00:00:00
intel
intel
2022.3 IPU - Intelยฎ Chipset Firmware Advisory
2022-11-30 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
50.1%
Related for NVD:CVE-2022-26845