CVE-2022-29508

CWE-395CWE-476NULL Pointer Dereference3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 73.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Virtual Raid ON CPU
Timeline
PublishedMay 10

Description

Null pointer dereference in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.0 | Impact: 5.2

Affected Packages2 packages

CVEListV5intel(r)_vroc_softwarebefore version 7.7.6.1003
NVDintel/virtual_raid_on_cpu< 7.7.6.1003

🔴Vulnerability Details

2
GHSA
GHSA-23mm-fp65-w636: Null pointer dereference in the Intel(R) VROC software before version 72023-05-10
CVEList
CVE-2022-29508: Null pointer dereference in the Intel(R) VROC software before version 72023-05-10
CVE-2022-29508 (HIGH CVSS 7.8) | Null pointer dereference in the Int | cvebase.io