CVE-2022-25976

CWE-20Improper Input Validation3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 83.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Virtual Raid ON CPU
Timeline
PublishedMay 10

Description

Improper input validation in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5intel(r)_vroc_softwarebefore version 7.7.6.1003
NVDintel/virtual_raid_on_cpu< 7.7.6.1003

🔴Vulnerability Details

2
GHSA
GHSA-9473-3jj4-gp2q: Improper input validation in the Intel(R) VROC software before version 72023-05-10
CVEList
CVE-2022-25976: Improper input validation in the Intel(R) VROC software before version 72023-05-10
CVE-2022-25976 (MEDIUM CVSS 5.5) | Improper input validation in the In | cvebase.io