cbcvebase.
CVE-2022-29893
published 2022-11-11

CVE-2022-29893: Improper authentication in firmware for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an authenticated…

high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
Improper authentication in firmware for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an authenticated user to potentially enable escalation of privilege via network access.

Affected

7 ranges
VendorProductVersion rangeFixed in
intelactive_management_technology_firmware< 11.8.9311.8.93
intelactive_management_technology_firmware>= 11.12.0 < 11.12.9311.12.93
intelactive_management_technology_firmware>= 11.22.0 < 11.22.9311.22.93
intelactive_management_technology_firmware>= 12.0 < 12.0.9212.0.92
intelactive_management_technology_firmware>= 14.1 < 14.1.6714.1.67
intelactive_management_technology_firmware>= 15.0 < 15.0.4215.0.42
intelactive_management_technology_firmware>= 16.1.0 < 16.1.2516.1.25