VDB
CVE-2022-33894
CVE-2022-33894
PUBLISHED
Es existiert eine Schwachstelle im Intel BIOS. Der Fehler besteht aufgrund einer unsachgemäßen Eingabevalidierung. Ein lokaler Angreifer mit bestimmten Rechten kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern.
EPSS 0.07% · 22.6th percentile
Risk Scores
EPSS Score
0.07%
22.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| HPE | HPE ProLiant | |
| Lenovo | Lenovo BIOS | |
| HPE | HPE Synergy | |
| HP | HP BIOS | |
| Intel | Intel BIOS |
Timeline
- May 9, 2023 CVE Published
- May 11, 2023 EPSS Score
- May 11, 2023 CVE Updated
- Jun 17, 2023 EPSS Score
- Jul 23, 2023 EPSS Score
- Aug 29, 2023 EPSS Score
- Oct 5, 2023 EPSS Score
- Nov 11, 2023 EPSS Score
- Dec 17, 2023 EPSS Score
- Jan 23, 2024 EPSS Score
- Feb 29, 2024 EPSS Score
- Apr 6, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1177.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1177 advisory
- https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04477en_us&hprpt_id=ALERT_HPE_3048184&jumpid=em_pom8nu6hj_aid-520066529 advisory
- https://support.lenovo.com/de/de/product_security/ps500559-multi-vendor-bios-security-vulnerabilities-may-2023 advisory
- https://support.hp.com/us-en/document/ish_8114411-8114438-16/HPSBHF03847 advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00807.html advisory