CVE-2022-28709

Опубликовано: 18 авг. 2022

Источник: nvd

CVSS3: 4.4

EPSS Низкий

Описание

Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.1.9 may allow a privileged user to potentially enable denial of service via local access.

Ссылки

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00593.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00593.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00593.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00593.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:intel:ethernet_controller_e810_firmware:*:*:*:*:*:*:*:*

Версия до 1.6.1.9 (исключая)

cpe:2.3:h:intel:ethernet_controller_e810:-:*:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.00079

Низкий

4.4 Medium

CVSS3

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fpfp-6pcj-jf2x

CVSS3: 4.4

github

больше 3 лет назад

Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.2.9 may allow a privileged user to potentially enable denial of service via local access.

BDU:2022-05069

CVSS3: 4.1

fstec