Details of VAR-202208-1513

ID

VAR-202208-1513

CVE

CVE-2022-23182

TITLE

Intel's Intel Data Center Manager Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-015196

DESCRIPTION

Improper access control in the Intel(R) Data Center Manager software before version 4.1 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Intel's Intel Data Center Manager Exists in unspecified vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Intel Data Center Manager is a software solution of Intel Corporation. Collects and analyzes real-time health, power and heat of various devices in the data center to help improve efficiency and uptime

Trust: 1.71

sources: NVD: CVE-2022-23182 // JVNDB: JVNDB-2022-015196 // VULHUB: VHN-415330

AFFECTED PRODUCTS

vendor:	intel	model:	data center manager	scope:	lt	version:	4.1	Trust: 1.0
vendor:	インテル	model:	intel data center manager	scope:	-	version:	-	Trust: 0.8
vendor:	インテル	model:	intel data center manager	scope:	eq	version:	4.1	Trust: 0.8
vendor:	インテル	model:	intel data center manager	scope:	eq	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-015196 // NVD: CVE-2022-23182

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-23182
value:	HIGH
Trust: 1.0
NVD:	CVE-2022-23182
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202208-3408
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2022-23182
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2022-23182
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-015196 // CNNVD: CNNVD-202208-3408 // NVD: CVE-2022-23182

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8
problemtype:	CWE-863	Trust: 0.1

sources: VULHUB: VHN-415330 // JVNDB: JVNDB-2022-015196 // NVD: CVE-2022-23182

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-202208-3408

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202208-3408

PATCH

title:

Intel Data Center Manager Security vulnerabilities

url:

http://123.124.177.30/web/xxk/bdxqById.tag?id=205105

Trust: 0.6

sources: CNNVD: CNNVD-202208-3408

EXTERNAL IDS

db:	NVD	id:	CVE-2022-23182	Trust: 3.3
db:	JVN	id:	JVNVU99494206	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-015196	Trust: 0.8
db:	CNNVD	id:	CNNVD-202208-3408	Trust: 0.7
db:	AUSCERT	id:	ESB-2022.3942.2	Trust: 0.6
db:	VULHUB	id:	VHN-415330	Trust: 0.1

sources: VULHUB: VHN-415330 // JVNDB: JVNDB-2022-015196 // CNNVD: CNNVD-202208-3408 // NVD: CVE-2022-23182

REFERENCES

url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00662.html	Trust: 2.5
url:	https://jvn.jp/vu/jvnvu99494206/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2022-23182	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2022.3942.2	Trust: 0.6
url:	https://cxsecurity.com/cveshow/cve-2022-23182/	Trust: 0.6

sources: VULHUB: VHN-415330 // JVNDB: JVNDB-2022-015196 // CNNVD: CNNVD-202208-3408 // NVD: CVE-2022-23182

SOURCES

db:	VULHUB	id:	VHN-415330
db:	JVNDB	id:	JVNDB-2022-015196
db:	CNNVD	id:	CNNVD-202208-3408
db:	NVD	id:	CVE-2022-23182

LAST UPDATE DATE

2024-08-14T12:46:56.928000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-415330	date:	2022-08-19T00:00:00
db:	JVNDB	id:	JVNDB-2022-015196	date:	2023-09-25T08:46:00
db:	CNNVD	id:	CNNVD-202208-3408	date:	2023-03-28T00:00:00
db:	NVD	id:	CVE-2022-23182	date:	2023-08-08T14:21:49.707

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-415330	date:	2022-08-18T00:00:00
db:	JVNDB	id:	JVNDB-2022-015196	date:	2023-09-25T00:00:00
db:	CNNVD	id:	CNNVD-202208-3408	date:	2022-08-18T00:00:00
db:	NVD	id:	CVE-2022-23182	date:	2022-08-18T20:15:10.513