Lucene search

PRIOn knowledge basePRION:CVE-2022-36396

HistoryNov 14, 2023 - 7:15 p.m.

Improper access control

2023-11-1419:15:00

PRIOn knowledge base

www.prio-n.com

intel

aptio

uefi

firmware

integrator

access control

privileged user

escalation of privilege

local access.

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper access control in some Intel® Aptio* V UEFI Firmware Integrator Tools before version iDmiEdit-Linux-5.27.06.0017 may allow a privileged user to potentially enable escalation of privilege via local access.

CPENameOperatorVersion
aptio_v_uefi_firmware_integrator_toolseq5.27.03.0003
aptio_v_uefi_firmware_integrator_toolseq5.27.06.0017

CPE	Name	Operator	Version
	aptio_v_uefi_firmware_integrator_tools	eq	5.27.03.0003
	aptio_v_uefi_firmware_integrator_tools	eq	5.27.06.0017

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html