Sign-up

ID

VAR-202208-1937


CVE

CVE-2022-24378


TITLE

Intel's  Intel Data Center Manager  Initialization vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-015188

DESCRIPTION

Improper initialization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access. Intel's Intel Data Center Manager Has an initialization vulnerability.Service operation interruption (DoS) It may be in a state. Collects and analyzes real-time health, power and heat of various devices in the data center to help improve efficiency and uptime

Trust: 1.71

sources: NVD: CVE-2022-24378 // JVNDB: JVNDB-2022-015188 // VULHUB: VHN-415333

AFFECTED PRODUCTS

vendor:intelmodel:data center managerscope:ltversion:4.1

Trust: 1.0

vendor:インテルmodel:intel data center managerscope: - version: -

Trust: 0.8

vendor:インテルmodel:intel data center managerscope:eqversion:4.1

Trust: 0.8

vendor:インテルmodel:intel data center managerscope:eqversion: -

Trust: 0.8

sources: JVNDB: JVNDB-2022-015188 // NVD: CVE-2022-24378

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-24378
value: MEDIUM

Trust: 1.0

NVD: CVE-2022-24378
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202208-3406
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2022-24378
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2022-24378
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2022-015188 // CNNVD: CNNVD-202208-3406 // NVD: CVE-2022-24378

PROBLEMTYPE DATA

problemtype:CWE-665

Trust: 1.1

problemtype:Improper initialization (CWE-665) [NVD evaluation ]

Trust: 0.8

sources: VULHUB: VHN-415333 // JVNDB: JVNDB-2022-015188 // NVD: CVE-2022-24378

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202208-3406

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202208-3406

PATCH

title:Intel Data Center Manager Security vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=205103

Trust: 0.6

sources: CNNVD: CNNVD-202208-3406

EXTERNAL IDS

db:NVDid:CVE-2022-24378

Trust: 3.3

db:JVNid:JVNVU99494206

Trust: 0.8

db:JVNDBid:JVNDB-2022-015188

Trust: 0.8

db:CNNVDid:CNNVD-202208-3406

Trust: 0.7

db:AUSCERTid:ESB-2022.3942.2

Trust: 0.6

db:VULHUBid:VHN-415333

Trust: 0.1

sources: VULHUB: VHN-415333 // JVNDB: JVNDB-2022-015188 // CNNVD: CNNVD-202208-3406 // NVD: CVE-2022-24378

REFERENCES

url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00662.html

Trust: 2.5

url:https://jvn.jp/vu/jvnvu99494206/

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2022-24378

Trust: 0.8

url:https://www.auscert.org.au/bulletins/esb-2022.3942.2

Trust: 0.6

url:https://cxsecurity.com/cveshow/cve-2022-24378/

Trust: 0.6

sources: VULHUB: VHN-415333 // JVNDB: JVNDB-2022-015188 // CNNVD: CNNVD-202208-3406 // NVD: CVE-2022-24378

SOURCES

db:VULHUBid:VHN-415333
db:JVNDBid:JVNDB-2022-015188
db:CNNVDid:CNNVD-202208-3406
db:NVDid:CVE-2022-24378

LAST UPDATE DATE

2024-08-14T13:07:20.523000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-415333date:2022-08-19T00:00:00
db:JVNDBid:JVNDB-2022-015188date:2023-09-25T08:46:00
db:CNNVDid:CNNVD-202208-3406date:2023-03-28T00:00:00
db:NVDid:CVE-2022-24378date:2022-08-19T20:04:21.067

SOURCES RELEASE DATE

db:VULHUBid:VHN-415333date:2022-08-18T00:00:00
db:JVNDBid:JVNDB-2022-015188date:2023-09-25T00:00:00
db:CNNVDid:CNNVD-202208-3406date:2022-08-18T00:00:00
db:NVDid:CVE-2022-24378date:2022-08-18T20:15:10.600