CVE-2022-38102 : Improper Input validation in firmware for some Intel(R) Converged Security and M

Products affected by CVE-2022-38102

Intel » Converged Security Management Engine Firmware
Versions before (<) 15.0.45
cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Atom X6200fe » Version: N/A
When used together with: Intel » Atom X6211e » Version: N/A
When used together with: Intel » Atom X6212re » Version: N/A
When used together with: Intel » Atom X6214re » Version: N/A
When used together with: Intel » Atom X6413e » Version: N/A
When used together with: Intel » Atom X6414re » Version: N/A
When used together with: Intel » Atom X6416re » Version: N/A
When used together with: Intel » Atom X6425e » Version: N/A
When used together with: Intel » Atom X6425re » Version: N/A
When used together with: Intel » Atom X6427fe » Version: N/A
When used together with: Intel » B560 » Version: N/A
When used together with: Intel » C252 » Version: N/A
When used together with: Intel » C256 » Version: N/A
When used together with: Intel » Celeron J1750 » Version: N/A
When used together with: Intel » Celeron J1800 » Version: N/A
When used together with: Intel » Celeron J1850 » Version: N/A
When used together with: Intel » Celeron J1900 » Version: N/A
When used together with: Intel » Celeron J3060 » Version: N/A
When used together with: Intel » Celeron J3160 » Version: N/A
When used together with: Intel » Celeron J3355 » Version: N/A
When used together with: Intel » Celeron J3355e » Version: N/A
When used together with: Intel » Celeron J3455 » Version: N/A
When used together with: Intel » Celeron J3455e » Version: N/A
When used together with: Intel » Celeron J4005 » Version: N/A
When used together with: Intel » Celeron J4025 » Version: N/A
When used together with: Intel » Celeron J4105 » Version: N/A
When used together with: Intel » Celeron J4125 » Version: N/A
When used together with: Intel » Celeron J6412 » Version: N/A
When used together with: Intel » Celeron J6413 » Version: N/A
When used together with: Intel » Celeron N2805 » Version: N/A
When used together with: Intel » Celeron N2806 » Version: N/A
When used together with: Intel » Celeron N2807 » Version: N/A
When used together with: Intel » Celeron N2808 » Version: N/A
When used together with: Intel » Celeron N2810 » Version: N/A
When used together with: Intel » Celeron N2815 » Version: N/A
When used together with: Intel » Celeron N2820 » Version: N/A
When used together with: Intel » Celeron N2830 » Version: N/A
When used together with: Intel » Celeron N2840 » Version: N/A
When used together with: Intel » Celeron N2910 » Version: N/A
When used together with: Intel » Celeron N2920 » Version: N/A
When used together with: Intel » Celeron N2930 » Version: N/A
When used together with: Intel » Celeron N2940 » Version: N/A
When used together with: Intel » Celeron N3000 » Version: N/A
When used together with: Intel » Celeron N3010 » Version: N/A
When used together with: Intel » Celeron N3050 » Version: N/A
When used together with: Intel » Celeron N3060 » Version: N/A
When used together with: Intel » Celeron N3150 » Version: N/A
When used together with: Intel » Celeron N3160 » Version: N/A
When used together with: Intel » Celeron N3350 » Version: N/A
When used together with: Intel » Celeron N3350e » Version: N/A
When used together with: Intel » Celeron N3450 » Version: N/A
When used together with: Intel » Celeron N4000 » Version: N/A
When used together with: Intel » Celeron N4020 » Version: N/A
When used together with: Intel » Celeron N4100 » Version: N/A
When used together with: Intel » Celeron N4120 » Version: N/A
When used together with: Intel » Celeron N4500 » Version: N/A
When used together with: Intel » Celeron N4505 » Version: N/A
When used together with: Intel » Celeron N5100 » Version: N/A
When used together with: Intel » Celeron N5105 » Version: N/A
When used together with: Intel » Celeron N6210 » Version: N/A
When used together with: Intel » Celeron N6211 » Version: N/A
When used together with: Intel » H510 » Version: N/A
When used together with: Intel » H570 » Version: N/A
When used together with: Intel » Hm570 » Version: N/A
When used together with: Intel » Hm570e » Version: N/A
When used together with: Intel » Pentium J2850 » Version: N/A
When used together with: Intel » Pentium J2900 » Version: N/A
When used together with: Intel » Pentium J3710 » Version: N/A
When used together with: Intel » Pentium J4205 » Version: N/A
When used together with: Intel » Pentium J6426 » Version: N/A
When used together with: Intel » Pentium N3510 » Version: N/A
When used together with: Intel » Pentium N3520 » Version: N/A
When used together with: Intel » Pentium N3530 » Version: N/A
When used together with: Intel » Pentium N3540 » Version: N/A
When used together with: Intel » Pentium N3700 » Version: N/A
When used together with: Intel » Pentium N3710 » Version: N/A
When used together with: Intel » Pentium N4200 » Version: N/A
When used together with: Intel » Pentium N4200e » Version: N/A
When used together with: Intel » Pentium N6415 » Version: N/A
When used together with: Intel » Q570 » Version: N/A
When used together with: Intel » Qm580 » Version: N/A
When used together with: Intel » Qm580e » Version: N/A
When used together with: Intel » Rm590e » Version: N/A
When used together with: Intel » W580 » Version: N/A
When used together with: Intel » Wm590 » Version: N/A
When used together with: Intel » Z590 » Version: N/A
Intel » Converged Security Management Engine Firmware
Versions before (<) 16.1.27
cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » B660 » Version: N/A
When used together with: Intel » H610 » Version: N/A
When used together with: Intel » H610e » Version: N/A
When used together with: Intel » H670 » Version: N/A
When used together with: Intel » Hm670 » Version: N/A
When used together with: Intel » Q670 » Version: N/A
When used together with: Intel » Q670e » Version: N/A
When used together with: Intel » R680e » Version: N/A
When used together with: Intel » W680 » Version: N/A
When used together with: Intel » Wm690 » Version: N/A
When used together with: Intel » Z690 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-38102

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 1 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-38102

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.4	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H	0.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
7.2	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H	0.8	5.8	Intel Corporation
Attack Vector: Local Attack Complexity: High Privileges Required: High User Interaction: None Scope: Changed Confidentiality: None Integrity: High Availability: High

References for CVE-2022-38102

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html

Access Denied
Vendor Advisory

CVEs referencing this url

Vulnerability Details : CVE-2022-38102

Products affected by CVE-2022-38102

Exploit prediction scoring system (EPSS) score for CVE-2022-38102

CVSS scores for CVE-2022-38102

References for CVE-2022-38102