cbcvebase.
CVE-2022-27497
published 2022-11-11

CVE-2022-27497: Null pointer dereference in firmware for Intel(R) AMT before version 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an…

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Null pointer dereference in firmware for Intel(R) AMT before version 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an unauthenticated user to potentially enable denial of service via network access.

Affected

7 ranges
VendorProductVersion rangeFixed in
intelactive_management_technology_firmware< 11.8.9311.8.93
intelactive_management_technology_firmware>= 11.12.0 < 11.12.9311.12.93
intelactive_management_technology_firmware>= 11.22.0 < 11.22.9311.22.93
intelactive_management_technology_firmware>= 12.0 < 12.0.9212.0.92
intelactive_management_technology_firmware>= 14.1 < 14.1.6714.1.67
intelactive_management_technology_firmware>= 15.0 < 15.0.4215.0.42
intelactive_management_technology_firmware>= 16.1.0 < 16.1.2516.1.25