PT-2022-4682 · Intel · Intel Sps
Tomasz Bagniuk
·
Published
2022-03-02
·
Updated
2022-10-07
·
CVE-2022-26074
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:S/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Intel(R) SPS versions prior to SPS E3 04.08.04.330.0
Intel(R) SPS versions prior to SPS E3 04.01.04.530.0
Description
The issue is related to incomplete cleanup in a firmware subsystem, which may allow a privileged user to potentially enable denial of service via local access. This could be exploited by an attacker to cause a denial of service.
Recommendations
For versions prior to SPS E3 04.08.04.330.0, update to version SPS E3 04.08.04.330.0 or later.
For versions prior to SPS E3 04.01.04.530.0, update to version SPS E3 04.01.04.530.0 or later.
Fix
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Intel Sps