PT-2023-13483 · Intel · Intel Ethernet 700 Series Controllers/Adapters+1

Marc Neustadter

Publicado

2023-02-16

Atualizado

2023-03-07

CVE-2022-36382

CVSS v3.1

6.0

Média

Vetor

AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) Ethernet Network Controllers and Adapters E810 Series versions prior to 1.7.0.8 Intel(R) Ethernet 700 Series Controllers and Adapters versions prior to 9.101

Description The issue is related to an out-of-bounds write in firmware, which may allow a privileged user to potentially enable denial of service via local access.

Recommendations For Intel(R) Ethernet Network Controllers and Adapters E810 Series versions prior to 1.7.0.8, update to version 1.7.0.8 or later. For Intel(R) Ethernet 700 Series Controllers and Adapters versions prior to 9.101, update to version 9.101 or later.

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2022-36382

Produtos afetados

Intel Ethernet 700 Series Controllers/Adapters

Intel Ethernet Network Controllers/Adapters E810 Series

PT-2023-13483 · Intel · Intel Ethernet 700 Series Controllers/Adapters+1

CVE-2022-36382

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4