CVE-2022-36392 - OpenCVE

Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Intel	B150 B250 B360 B365 B460 B560 B660 C232 C236 C242 C246 C420 C422 Celeron 4205u Celeron 4305u Celeron 4305ue Cm236 Cm238 Cm246 Converged Security Management Engine Firmware Core I3-8100 Core I3-8100b Core I3-8100h Core I3-8100t Core I3-8109u Core I3-8130u Core I3-8140u Core I3-8145u Core I3-8145ue Core I3-8300 Core I3-8300t Core I3-8350k Core I5-8200y Core I5-8210y Core I5-8250u Core I5-8257u Core I5-8259u Core I5-8260u Core I5-8265u Core I5-8269u Core I5-8279u Core I5-8300h Core I5-8305g Core I5-8310y Core I5-8350u Core I5-8365u Core I5-8365ue Core I5-8400 Core I5-8400b Core I5-8400h Core I5-8400t Core I5-8500 Core I5-8500b Core I5-8500t Core I5-8600 Core I5-8600k Core I5-8600t Core I7-8086k Core I7-8500y Core I7-8550u Core I7-8557u Core I7-8559u Core I7-8565u Core I7-8569u Core I7-8650u Core I7-8665u Core I7-8665ue Core I7-8700 Core I7-8700b Core I7-8700k Core I7-8700t Core I7-8705g Core I7-8706g Core I7-8709g Core I7-8750h Core I7-8809g Core I7-8850h Core I7\+8700 Core I9-8950hk Core M3-8100y H110 H170 H270 H310 H370 H410 H420e H470 H510 H570 H610 H610e H670 Hm170 Hm175 Hm370 Hm470 Hm570 Hm570e Hm670 Pentium Gold 5405u Q150 Q170 Q250 Q270 Q370 Q470 Q470e Q570 Q670 Q670e Qm170 Qm175 Qm370 Qm480 Qm580 Qm580e R680e Rm590e W480 W480e W580 W680 Wm490 Wm590 Wm690 X299 Z170 Z270 Z370 Z390 Z490 Z590 Z690

Configuration 1 [-]

AND

cpe:2.3:a:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:c232:-:::::::*
	cpe:2.3:h:intel:c236:-:::::::*
	cpe:2.3:h:intel:c420:-:::::::*
	cpe:2.3:h:intel:c422:-:::::::*
	cpe:2.3:h:intel:cm236:-:::::::*
	cpe:2.3:h:intel:cm238:-:::::::*
	cpe:2.3:h:intel:x299:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:a:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:b150:-:::::::*
	cpe:2.3:h:intel:b250:-:::::::*
	cpe:2.3:h:intel:core_i3-8100:-:::::::*
	cpe:2.3:h:intel:core_i3-8100b:-:::::::*
	cpe:2.3:h:intel:core_i3-8100h:-:::::::*
	cpe:2.3:h:intel:core_i3-8100t:-:::::::*
	cpe:2.3:h:intel:core_i3-8109u:-:::::::*
	cpe:2.3:h:intel:core_i3-8130u:-:::::::*
	cpe:2.3:h:intel:core_i3-8140u:-:::::::*
	cpe:2.3:h:intel:core_i3-8145u:-:::::::*
	cpe:2.3:h:intel:core_i3-8145ue:-:::::::*
	cpe:2.3:h:intel:core_i3-8300:-:::::::*
	cpe:2.3:h:intel:core_i3-8300t:-:::::::*
	cpe:2.3:h:intel:core_i3-8350k:-:::::::*
	cpe:2.3:h:intel:core_i5-8200y:-:::::::*
	cpe:2.3:h:intel:core_i5-8210y:-:::::::*
	cpe:2.3:h:intel:core_i5-8250u:-:::::::*
	cpe:2.3:h:intel:core_i5-8257u:-:::::::*
	cpe:2.3:h:intel:core_i5-8259u:-:::::::*
	cpe:2.3:h:intel:core_i5-8260u:-:::::::*
	cpe:2.3:h:intel:core_i5-8265u:-:::::::*
	cpe:2.3:h:intel:core_i5-8269u:-:::::::*
	cpe:2.3:h:intel:core_i5-8279u:-:::::::*
	cpe:2.3:h:intel:core_i5-8300h:-:::::::*
	cpe:2.3:h:intel:core_i5-8305g:-:::::::*
	cpe:2.3:h:intel:core_i5-8310y:-:::::::*
	cpe:2.3:h:intel:core_i5-8350u:-:::::::*
	cpe:2.3:h:intel:core_i5-8365u:-:::::::*
	cpe:2.3:h:intel:core_i5-8365ue:-:::::::*
	cpe:2.3:h:intel:core_i5-8400:-:::::::*
	cpe:2.3:h:intel:core_i5-8400b:-:::::::*
	cpe:2.3:h:intel:core_i5-8400h:-:::::::*
	cpe:2.3:h:intel:core_i5-8400t:-:::::::*
	cpe:2.3:h:intel:core_i5-8500:-:::::::*
	cpe:2.3:h:intel:core_i5-8500b:-:::::::*
	cpe:2.3:h:intel:core_i5-8500t:-:::::::*
	cpe:2.3:h:intel:core_i5-8600:-:::::::*
	cpe:2.3:h:intel:core_i5-8600k:-:::::::*
	cpe:2.3:h:intel:core_i5-8600t:-:::::::*
	cpe:2.3:h:intel:core_i7\+8700:-:::::::*
	cpe:2.3:h:intel:core_i7-8086k:-:::::::*
	cpe:2.3:h:intel:core_i7-8500y:-:::::::*
	cpe:2.3:h:intel:core_i7-8550u:-:::::::*
	cpe:2.3:h:intel:core_i7-8557u:-:::::::*
	cpe:2.3:h:intel:core_i7-8559u:-:::::::*
	cpe:2.3:h:intel:core_i7-8565u:-:::::::*
	cpe:2.3:h:intel:core_i7-8569u:-:::::::*
	cpe:2.3:h:intel:core_i7-8650u:-:::::::*
	cpe:2.3:h:intel:core_i7-8665u:-:::::::*
	cpe:2.3:h:intel:core_i7-8665ue:-:::::::*
	cpe:2.3:h:intel:core_i7-8700:-:::::::*
	cpe:2.3:h:intel:core_i7-8700b:-:::::::*
	cpe:2.3:h:intel:core_i7-8700k:-:::::::*
	cpe:2.3:h:intel:core_i7-8700t:-:::::::*
	cpe:2.3:h:intel:core_i7-8705g:-:::::::*
	cpe:2.3:h:intel:core_i7-8706g:-:::::::*
	cpe:2.3:h:intel:core_i7-8709g:-:::::::*
	cpe:2.3:h:intel:core_i7-8750h:-:::::::*
	cpe:2.3:h:intel:core_i7-8809g:-:::::::*
	cpe:2.3:h:intel:core_i7-8850h:-:::::::*
	cpe:2.3:h:intel:core_i9-8950hk:-:::::::*
	cpe:2.3:h:intel:core_m3-8100y:-:::::::*
	cpe:2.3:h:intel:h110:-:::::::*
	cpe:2.3:h:intel:h170:-:::::::*
cpe:2.3:h:intel:h270:-:::::::*
cpe:2.3:h:intel:hm170:-:::::::*
cpe:2.3:h:intel:hm175:-:::::::*
cpe:2.3:h:intel:q150:-:::::::*
cpe:2.3:h:intel:q170:-:::::::*
cpe:2.3:h:intel:q250:-:::::::*
cpe:2.3:h:intel:q270:-:::::::*
cpe:2.3:h:intel:qm170:-:::::::*
cpe:2.3:h:intel:qm175:-:::::::*
cpe:2.3:h:intel:x299:-:::::::*
cpe:2.3:h:intel:z170:-:::::::*
cpe:2.3:h:intel:z270:-:::::::*

Configuration 3 [-]

AND

cpe:2.3:a:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:b360:-:::::::*
	cpe:2.3:h:intel:b365:-:::::::*
	cpe:2.3:h:intel:c242:-:::::::*
	cpe:2.3:h:intel:c246:-:::::::*
	cpe:2.3:h:intel:celeron_4205u:-:::::::*
	cpe:2.3:h:intel:celeron_4305u:-:::::::*
	cpe:2.3:h:intel:celeron_4305ue:-:::::::*
	cpe:2.3:h:intel:cm246:-:::::::*
	cpe:2.3:h:intel:core_i3-8100:-:::::::*
	cpe:2.3:h:intel:core_i3-8100b:-:::::::*
	cpe:2.3:h:intel:core_i3-8100h:-:::::::*
	cpe:2.3:h:intel:core_i3-8100t:-:::::::*
	cpe:2.3:h:intel:core_i3-8109u:-:::::::*
	cpe:2.3:h:intel:core_i3-8130u:-:::::::*
	cpe:2.3:h:intel:core_i3-8140u:-:::::::*
	cpe:2.3:h:intel:core_i3-8145u:-:::::::*
	cpe:2.3:h:intel:core_i3-8145ue:-:::::::*
	cpe:2.3:h:intel:core_i3-8300:-:::::::*
	cpe:2.3:h:intel:core_i3-8300t:-:::::::*
	cpe:2.3:h:intel:core_i3-8350k:-:::::::*
	cpe:2.3:h:intel:core_i5-8200y:-:::::::*
	cpe:2.3:h:intel:core_i5-8210y:-:::::::*
	cpe:2.3:h:intel:core_i5-8250u:-:::::::*
	cpe:2.3:h:intel:core_i5-8257u:-:::::::*
	cpe:2.3:h:intel:core_i5-8259u:-:::::::*
	cpe:2.3:h:intel:core_i5-8260u:-:::::::*
	cpe:2.3:h:intel:core_i5-8265u:-:::::::*
	cpe:2.3:h:intel:core_i5-8269u:-:::::::*
	cpe:2.3:h:intel:core_i5-8279u:-:::::::*
	cpe:2.3:h:intel:core_i5-8300h:-:::::::*
	cpe:2.3:h:intel:core_i5-8305g:-:::::::*
	cpe:2.3:h:intel:core_i5-8310y:-:::::::*
	cpe:2.3:h:intel:core_i5-8350u:-:::::::*
	cpe:2.3:h:intel:core_i5-8365u:-:::::::*
	cpe:2.3:h:intel:core_i5-8365ue:-:::::::*
	cpe:2.3:h:intel:core_i5-8400:-:::::::*
	cpe:2.3:h:intel:core_i5-8400b:-:::::::*
	cpe:2.3:h:intel:core_i5-8400h:-:::::::*
	cpe:2.3:h:intel:core_i5-8400t:-:::::::*
	cpe:2.3:h:intel:core_i5-8500:-:::::::*
	cpe:2.3:h:intel:core_i5-8500b:-:::::::*
	cpe:2.3:h:intel:core_i5-8500t:-:::::::*
	cpe:2.3:h:intel:core_i5-8600:-:::::::*
	cpe:2.3:h:intel:core_i5-8600k:-:::::::*
	cpe:2.3:h:intel:core_i5-8600t:-:::::::*
	cpe:2.3:h:intel:core_i7\+8700:-:::::::*
	cpe:2.3:h:intel:core_i7-8086k:-:::::::*
	cpe:2.3:h:intel:core_i7-8500y:-:::::::*
	cpe:2.3:h:intel:core_i7-8550u:-:::::::*
	cpe:2.3:h:intel:core_i7-8557u:-:::::::*
	cpe:2.3:h:intel:core_i7-8559u:-:::::::*
	cpe:2.3:h:intel:core_i7-8565u:-:::::::*
	cpe:2.3:h:intel:core_i7-8569u:-:::::::*
	cpe:2.3:h:intel:core_i7-8650u:-:::::::*
	cpe:2.3:h:intel:core_i7-8665u:-:::::::*
	cpe:2.3:h:intel:core_i7-8665ue:-:::::::*
	cpe:2.3:h:intel:core_i7-8700:-:::::::*
	cpe:2.3:h:intel:core_i7-8700b:-:::::::*
	cpe:2.3:h:intel:core_i7-8700k:-:::::::*
	cpe:2.3:h:intel:core_i7-8700t:-:::::::*
	cpe:2.3:h:intel:core_i7-8705g:-:::::::*
	cpe:2.3:h:intel:core_i7-8706g:-:::::::*
	cpe:2.3:h:intel:core_i7-8709g:-:::::::*
	cpe:2.3:h:intel:core_i7-8750h:-:::::::*
cpe:2.3:h:intel:core_i7-8809g:-:::::::*
cpe:2.3:h:intel:core_i7-8850h:-:::::::*
cpe:2.3:h:intel:core_i9-8950hk:-:::::::*
cpe:2.3:h:intel:core_m3-8100y:-:::::::*
cpe:2.3:h:intel:h310:-:::::::*
cpe:2.3:h:intel:h370:-:::::::*
cpe:2.3:h:intel:hm370:-:::::::*
cpe:2.3:h:intel:pentium_gold_5405u:-:::::::*
cpe:2.3:h:intel:q370:-:::::::*
cpe:2.3:h:intel:qm370:-:::::::*
cpe:2.3:h:intel:z370:-:::::::*
cpe:2.3:h:intel:z390:-:::::::*

Configuration 4 [-]

AND

OR	cpe:2.3:a:intel:converged_security_management_engine_firmware::::::::
	cpe:2.3:a:intel:converged_security_management_engine_firmware::::::::

OR	cpe:2.3:h:intel:b460:-:::::::*
	cpe:2.3:h:intel:h410:-:::::::*
	cpe:2.3:h:intel:h420e:-:::::::*
	cpe:2.3:h:intel:h470:-:::::::*
	cpe:2.3:h:intel:hm470:-:::::::*
	cpe:2.3:h:intel:q470:-:::::::*
	cpe:2.3:h:intel:q470e:-:::::::*
	cpe:2.3:h:intel:qm480:-:::::::*
	cpe:2.3:h:intel:w480:-:::::::*
	cpe:2.3:h:intel:w480e:-:::::::*
	cpe:2.3:h:intel:wm490:-:::::::*
	cpe:2.3:h:intel:z490:-:::::::*

Configuration 5 [-]

AND

cpe:2.3:a:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:b560:-:::::::*
	cpe:2.3:h:intel:h510:-:::::::*
	cpe:2.3:h:intel:h570:-:::::::*
	cpe:2.3:h:intel:hm570:-:::::::*
	cpe:2.3:h:intel:hm570e:-:::::::*
	cpe:2.3:h:intel:q570:-:::::::*
	cpe:2.3:h:intel:qm580:-:::::::*
	cpe:2.3:h:intel:qm580e:-:::::::*
	cpe:2.3:h:intel:rm590e:-:::::::*
	cpe:2.3:h:intel:w580:-:::::::*
	cpe:2.3:h:intel:wm590:-:::::::*
	cpe:2.3:h:intel:z590:-:::::::*

Configuration 6 [-]

AND

cpe:2.3:a:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:b660:-:::::::*
	cpe:2.3:h:intel:h610:-:::::::*
	cpe:2.3:h:intel:h610e:-:::::::*
	cpe:2.3:h:intel:h670:-:::::::*
	cpe:2.3:h:intel:hm670:-:::::::*
	cpe:2.3:h:intel:q670:-:::::::*
	cpe:2.3:h:intel:q670e:-:::::::*
	cpe:2.3:h:intel:r680e:-:::::::*
	cpe:2.3:h:intel:w680:-:::::::*
	cpe:2.3:h:intel:wm690:-:::::::*
	cpe:2.3:h:intel:z690:-:::::::*

No data.

References

Link	Providers
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html
https://security.netapp.com/advisory/ntap-20230824-0002/

History

No history.

MITRE

Status: PUBLISHED

Assigner: intel

Published: 2023-08-11T02:36:55.653Z

Updated: 2024-08-03T10:00:04.315Z

Reserved: 2022-07-24T03:00:08.597Z

Link: CVE-2022-36392

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-08-11T03:15:13.250

Modified: 2023-11-07T03:49:37.397

Link: CVE-2022-36392

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object