CVE-2022-41689

Опубликовано: 14 нояб. 2023

Источник: nvd

CVSS3: 7.3

CVSS3: 7.8

EPSS Низкий

Описание

Improper access control in some Intel In-Band Manageability software before version 3.0.14 may allow an authenticated user to potentially enable escalation of privilege via local access.

Ссылки

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00968.html
Patch
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00968.html
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:intel:in-band_manageability:*:*:*:*:*:*:*:*

Версия до 3.0.14 (исключая)

EPSS

Процентиль: 30%

0.00111

Низкий

7.3 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-284

NVD-CWE-Other

Связанные уязвимости

GHSA-9f83-5mc2-p75r

CVSS3: 7.3

github

около 2 лет назад

Improper access control in some Intel In-Band Manageability software before version 3.0.14 may allow an authenticated user to potentially enable escalation of privilege via local access.

EPSS

Процентиль: 30%

0.00111

Низкий

7.3 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-284

NVD-CWE-Other