VDB
CVE-2022-29871
CVE-2022-29871
PUBLISHED
Es besteht eine Schwachstelle im Intel-Chipsatz. Dieser Fehler besteht in Intel CSME aufgrund einer unsachgemäßen Zugriffskontrolle. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion
EPSS 0.07% · 20.5th percentile
Risk Scores
EPSS Score
0.07%
20.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fujitsu | Fujitsu Eternus | |
| Intel | Intel Chipset | |
| HP | HP Computer | |
| Fujitsu | Fujitsu Primergy | |
| Lenovo | Lenovo Computer | |
| Dell | Dell Computer | |
| Dell | Dell PowerEdge | |
| Fujitsu | Fujitsu BIOS |
Timeline
- Aug 8, 2023 CVE Published
- Aug 11, 2023 EPSS Score
- Sep 14, 2023 EPSS Score
- Oct 17, 2023 EPSS Score
- Nov 20, 2023 EPSS Score
- Dec 13, 2023 CVE Updated
- Dec 23, 2023 EPSS Score
- Jan 26, 2024 EPSS Score
- Feb 28, 2024 EPSS Score
- Apr 2, 2024 EPSS Score
- May 5, 2024 EPSS Score
- Jun 8, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2014.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2014 advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html advisory
- https://security.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-ISS-IS-2023-031500-Security-Advisory.asp?lng=com advisory
- https://support.hp.com/us-en/document/ish_9022560-9022595-16/HPSBHF03860 advisory
- https://support.lenovo.com/us/en/product_security/LEN-121185 advisory
- https://www.dell.com/support/kbdoc/de-de/000216544/dsa-2023-295-security-update-for-dell-poweredge-t40-mini-tower-server-for-intel-august-2023-security-advisories-2023-3-ipu advisory
- https://www.dell.com/support/kbdoc/000216234/dsa-2023-= advisory