PT-2022-18096 · Intel · Intel Amt
Published
2022-11-11
·
Updated
2023-05-22
·
CVE-2022-26845
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) AMT versions prior to 11.8.93
Intel(R) AMT versions prior to 11.12.93
Intel(R) AMT versions prior to 11.22.93
Intel(R) AMT versions prior to 12.0.92
Intel(R) AMT versions prior to 14.1.67
Intel(R) AMT versions prior to 15.0.42
Intel(R) AMT versions prior to 16.1.25
Description
The issue is related to improper authentication in the firmware for Intel(R) AMT, which may allow an unauthenticated user to potentially enable escalation of privilege via network access.
Recommendations
For versions prior to 11.8.93, update to version 11.8.93 or later.
For versions prior to 11.12.93, update to version 11.12.93 or later.
For versions prior to 11.22.93, update to version 11.22.93 or later.
For versions prior to 12.0.92, update to version 12.0.92 or later.
For versions prior to 14.1.67, update to version 14.1.67 or later.
For versions prior to 15.0.42, update to version 15.0.42 or later.
For versions prior to 16.1.25, update to version 16.1.25 or later.
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Amt