Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-21216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a privileged user to...

7.5CVSS6.7AI score0.00539EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.24 views

RHEL 6 : microcode_ctl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - kernel: Intel firmware update for insufficient granularity of access control in out-of-band management in some Inte...

7.5CVSS7AI score0.00539EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/21 10:21 a.m.52 views

Security Bulletin: IBM QRadar SIEM M7 Appliances are vulnerable to CVE-2022-21216

Summary IBM QRadar SIEM M7 Appliances could be vulnerable to an Intel CVE. IBM has addressed the relevant CVE. Vulnerability Details CVEID:CVE-2022-21216 DESCRIPTION: IntelAtom and Intel Xeon Scalable Processors could allow a remote authenticated attacker to gain elevated privileges on the system...

7.5CVSS7AI score0.00539EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/19 12:0 a.m.38 views

RHEL 8 : Red Hat Virtualization Host 4.4.z SP 1 (RHSA-2023:5209)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:5209 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

7.5CVSS8AI score0.59501EPSS
Exploits0References8
Rosalinux
Rosalinux
added 2023/09/05 9:37 a.m.41 views

Advisory ROSA-SA-2023-2228

Software: microcodectl 2.1 OS: rosa-server79 packageevrstring: microcodectl-2.1-73.16.res7 CVE-ID: CVE-2022-21216 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: Insufficient granularity in external management access control in some IntelR Atom and Intel Xeon scalable processors may allow a privileged...

7.5CVSS6.6AI score0.00539EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/08/18 12:0 a.m.20 views

Fedora: Security Advisory for microcode_ctl (FEDORA-2023-10d34be85a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.03882EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/08/17 12:0 a.m.27 views

Fedora: Security Advisory for microcode_ctl (FEDORA-2023-e1482687dd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.03882EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2023/07/08 2:53 a.m.40 views

microcode_ctl bug fix and enhancement update

An update is available for microcodectl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The microcodectl packages provide microcode updates for Intel processors...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/06/08 12:0 a.m.32 views

Amazon Linux 2023 : microcode_ctl (ALAS2023-2023-189)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-189 advisory. 2024-05-09: CVE-2022-33196 was added to this advisory. Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a...

7.5CVSS6.3AI score0.00539EPSS
Exploits0References10
Amazon
Amazon
added 2023/05/31 12:0 a.m.43 views

Medium: microcode_ctl

Issue Overview: Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access. CVE-2022-21216 Incorrect default permissions in some...

7.5CVSS6.3AI score0.00539EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/29 12:0 a.m.28 views

Fedora 37 : microcode_ctl (2023-b28dc472b0)

"The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-b28dc472b0 advisory. - Update to upstream 2.1-40. 20230516 - Addition of 06-6c-01/0x10 ICL-D B0 microcode at revision 0x1000230; - Addition of 06-8f-04/0x87 SPR-SP E0/S...

7.5CVSS6.2AI score0.00539EPSS
Exploits0References5
Cloud Foundry
Cloud Foundry
added 2023/04/20 12:0 a.m.34 views

USN-5886-1: Intel Microcode vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description Erik C. Bjorge discovered that some IntelR Atom and Intel Xeon Scalable Processors did not properly implement access controls for out-of-band management. This...

7.5CVSS6.1AI score0.00539EPSS
Exploits0Affected Software3
Amazon
Amazon
added 2023/04/05 12:0 a.m.27 views

Important: microcode_ctl

Issue Overview: Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access. CVE-2022-21216 Incorrect default permissions in some...

7.5CVSS6.6AI score0.00539EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/04/05 12:0 a.m.25 views

Debian: Security Advisory (DLA-3379-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.00539EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2023:0568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.00539EPSS
Exploits0References9
Mageia
Mageia
added 2023/03/11 7:0 p.m.48 views

Updated microcode packages fix security vulnerabilities

Updated microcode packages fix security vulnerabilities: Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access CVE-2022-21216...

7.5CVSS5.8AI score0.00539EPSS
Exploits0References5
OSV
OSV
added 2023/02/28 10:6 a.m.7 views

SUSE-SU-2023:0568-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20230214 release. Security issues fixed: - CVE-2022-38090: Security updates for INTEL-SA-00767 bsc1208275 - CVE-2022-33196: Security updates for INTEL-SA-00738 bsc1208276 - CVE-2022-21216: Security updates for...

7.5CVSS6.6AI score0.00539EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2023/02/27 5:12 a.m.101 views

USN-5886-1: Intel Microcode vulnerabilities

Erik C. Bjorge discovered that some IntelR Atom and Intel Xeon Scalable Processors did not properly implement access controls for out-of-band management. This may allow a privileged network-adjacent user to potentially escalate privileges. CVE-2022-21216 Cfir Cohen, Erdem Aktas, Felix Wilhelm,...

7.5CVSS6.3AI score0.00539EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/02/27 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-5886-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.00539EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/02/21 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:0456-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.00539EPSS
Exploits0References9
Rows per page
Query Builder