Lucene search

[email protected]NVD:CVE-2022-38787

HistoryMay 10, 2023 - 2:15 p.m.

CVE-2022-38787

2023-05-1014:15:14

CWE-20

[email protected]

web.nvd.nist.gov

input validation

intel fpga

firmware

escalation of privilege

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper input validation in firmware for some Intel® FPGA products before version 2.7.0 Hotfix may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

NVD

Node

intelagilex_7_fpga_f-series_019_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_f-series_019Match-

Node

intelagilex_7_fpga_f-series_023_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_f-series_023Match-

Node

intelagilex_7_fpga_f-series_006_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_f-series_006Match-

Node

intelagilex_7_fpga_f-series_008_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_f-series_008Match-

Node

intelagilex_7_fpga_f-series_027_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_f-series_027Match-

Node

intelagilex_7_fpga_f-series_014_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_f-series_014Match-

Node

intelagilex_7_fpga_f-series_012Match-

AND

intelagilex_7_fpga_f-series_012_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_f-series_022Match-

AND

intelagilex_7_fpga_f-series_022_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_022Match-

AND

intelagilex_7_fpga_i-series_022_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_041Match-

AND

intelagilex_7_fpga_i-series_041_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_035Match-

AND

intelagilex_7_fpga_i-series_035_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_027Match-

AND

intelagilex_7_fpga_i-series_027_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_019Match-

AND

intelagilex_7_fpga_i-series_019_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_040Match-

AND

intelagilex_7_fpga_i-series_040_firmwareRange≤2.7.0

Node

intelagilex_7_fpga_i-series_023_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_i-series_023Match-

Node

intelagilex_7_fpga_m-series_039_firmwareRange≤2.7.0

AND

intelagilex_7_fpga_m-series_039Match-

Node

intelstratix_10_nx_2100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_nx_2100_fpgaMatch-

Node

intelstratix_10_dx_2800_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_dx_2800_fpgaMatch-

Node

intelstratix_10_dx_2100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_dx_2100_fpgaMatch-

Node

intelstratix_10_dx_1100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_dx_1100_fpgaMatch-

Node

intelstratix_10_tx_1650_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_1650_fpgaMatch-

Node

intelstratix_10_tx_2500_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_2500_fpgaMatch-

Node

intelstratix_10_tx_2100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_2100_fpgaMatch-

Node

intelstratix_10_tx_850_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_850_fpgaMatch-

Node

intelstratix_10_tx_400_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_400_fpgaMatch-

Node

intelstratix_10_tx_1100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_1100_fpgaMatch-

Node

intelstratix_10_tx_2800_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_tx_2800_fpgaMatch-

Node

intelstratix_10_sx_650_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_650_fpgaMatch-

Node

intelstratix_10_sx_400_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_400_fpgaMatch-

Node

intelstratix_10_sx_1100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_1100_fpgaMatch-

Node

intelstratix_10_sx_850_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_850_fpgaMatch-

Node

intelstratix_10_sx_1650_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_1650_fpgaMatch-

Node

intelstratix_10_sx_2100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_2100_fpgaMatch-

Node

intelstratix_10_sx_2500_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_2500_fpgaMatch-

Node

intelstratix_10_sx_2800_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_sx_2800_fpgaMatch-

Node

intelstratix_10_mx_2100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_mx_2100_fpgaMatch-

Node

intelstratix_10_mx_1650_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_mx_1650_fpgaMatch-

Node

intelstratix_10_gx_2110_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_2110_fpgaMatch-

Node

intelstratix_10_gx_1660_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_1660_fpgaMatch-

Node

intelstratix_10_gx_650_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_650_fpgaMatch-

Node

intelstratix_10_gx_400_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_400_fpgaMatch-

Node

intelstratix_10_gx_850_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_850_fpgaMatch-

Node

intelstratix_10_gx_2100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_2100_fpgaMatch-

Node

intelstratix_10_gx_1100_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_1100_fpgaMatch-

Node

intelstratix_10_gx_2500_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_2500_fpgaMatch-

Node

intelstratix_10_gx_10m_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_10m_fpgaMatch-

Node

intelstratix_10_gx_2800_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_2800_fpgaMatch-

Node

intelstratix_10_gx_1650_fpga_firmwareRange≤2.7.0

AND

intelstratix_10_gx_1650_fpgaMatch-

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00824.html

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2022-38787

prion1 cve1 intel1 cvelist1