CVE-2022-29514 — Intel System Usage Report vulnerability

3 documents3 sources

Severity

9.8CRITICALNVD

CNA7.7

EPSS

1.1%

top 21.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel System Usage Report

Timeline

PublishedFeb 16

Description

Improper access control in the Intel(R) SUR software before version 2.4.8902 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDintel/system_usage_report< 2.4.8902

Patches

Patch: www.intel.com ↗Patch: www.intel.com ↗

🔴Vulnerability Details

GHSA

GHSA-h5g8-g39c-pcwg: Improper access control in the Intel(R) SUR software before version 2↗2023-02-16

▶

CVEList

CVE-2022-29514: Improper access control in the Intel(R) SUR software before version 2↗2023-02-16

▶