CVE-2022-34657

Опубликовано: 11 авг. 2023

Источник: nvd

CVSS3: 6

CVSS3: 4.4

EPSS Низкий

Описание

Improper input validation in firmware for some Intel(R) PCSD BIOS before version 02.01.0013 may allow a privileged user to potentially enable information disclosure via local access.

Ссылки

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00742.html
Vendor Advisory
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00742.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:intel:pcsd_bios:*:*:*:*:*:*:*:*

Версия до 02.01.0013 (исключая)

Одно из

cpe:2.3:h:intel:r1208wfqysr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r1208wftys:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r1208wftysr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r1304wf0ys:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r1304wf0ysr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r1304wftys:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r1304wftysr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2208wf0zs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2208wf0zsr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2208wfqzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2208wfqzsr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2208wftzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2208wftzsr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2224wfqzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2224wftzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2224wftzsr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2308wftzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2308wftzsr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2312wf0np:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2312wf0npr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2312wfqzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2312wftzs:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:r2312wftzsr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wf0:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wf0r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wfq:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wfqr:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wft:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wftf:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:s2600wftr:-:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.0003

Низкий

6 Medium

CVSS3

4.4 Medium

CVSS3

Дефекты

CWE-20

Связанные уязвимости

GHSA-p5wc-7368-9w6c

CVSS3: 6

github

больше 2 лет назад

Improper input validation in firmware for some Intel(R) PCSD BIOS before version 02.01.0013 may allow a privileged user to potentially enable information disclosure via local access.

EPSS

Процентиль: 8%

0.0003

Низкий

6 Medium

CVSS3

4.4 Medium

CVSS3

Дефекты

CWE-20