ID
VAR-202211-0555
CVE
CVE-2022-29466
TITLE
Intel's Intel Server Platform Services Firmware Input Validation Vulnerability
Trust: 0.8
sources:
JVNDB: JVNDB-2022-020987
DESCRIPTION
Improper input validation in firmware for Intel(R) SPS before version SPS_E3_04.01.04.700.0 may allow an authenticated user to potentially enable denial of service via local access. Intel's Intel Server Platform Services There is an input validation vulnerability in firmware.Service operation interruption (DoS) It may be in a state
Trust: 1.71
sources:
NVD: CVE-2022-29466 //
JVNDB: JVNDB-2022-020987 //
VULHUB: VHN-420999
AFFECTED PRODUCTS
| vendor: | intel | model: | server platform services | scope: | lt | version: | sps_e3_04.01.04.700.0 | Trust: 1.0 |
| vendor: | インテル | model: | intel server platform services | scope: | - | version: | - | Trust: 0.8 |
| vendor: | 日立 | model: | 日立アドバンストサーバ ha8000 シリーズ | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-020987 //
NVD: CVE-2022-29466
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2022-020987 //
CNNVD: CNNVD-202211-2465 //
NVD: CVE-2022-29466 //
NVD: CVE-2022-29466
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.1 |
| problemtype: | Inappropriate input confirmation (CWE-20) [NVD evaluation ] | Trust: 0.8 |
sources:
VULHUB: VHN-420999 //
JVNDB: JVNDB-2022-020987 //
NVD: CVE-2022-29466
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202211-2465
TYPE
input validation error
Trust: 0.6
sources:
CNNVD: CNNVD-202211-2465
PATCH
| title: | hitachi-sec-2022-224 | url: | https://www.hitachi.co.jp/products/it/server/security/info/vulnerable/hitachi_sec_2022_224.html | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-020987
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-29466 | Trust: 3.3 |
| db: | JVN | id: | JVNVU94499505 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2022-020987 | Trust: 0.8 |
| db: | AUSCERT | id: | ESB-2022.5834 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202211-2465 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-420999 | Trust: 0.1 |
sources:
VULHUB: VHN-420999 //
JVNDB: JVNDB-2022-020987 //
CNNVD: CNNVD-202211-2465 //
NVD: CVE-2022-29466
REFERENCES
| url: | https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00610.html | Trust: 2.5 |
| url: | https://jvn.jp/vu/jvnvu94499505/ | Trust: 0.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-29466 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-29466/ | Trust: 0.6 |
| url: | https://vigilance.fr/vulnerability/intel-amt-csme-sps-multiple-vulnerabilities-39877 | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2022.5834 | Trust: 0.6 |
sources:
VULHUB: VHN-420999 //
JVNDB: JVNDB-2022-020987 //
CNNVD: CNNVD-202211-2465 //
NVD: CVE-2022-29466
SOURCES
| db: | VULHUB | id: | VHN-420999 |
| db: | JVNDB | id: | JVNDB-2022-020987 |
| db: | CNNVD | id: | CNNVD-202211-2465 |
| db: | NVD | id: | CVE-2022-29466 |
LAST UPDATE DATE
2024-08-14T12:49:56.108000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-420999 | date: | 2022-11-17T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-020987 | date: | 2024-03-07T05:03:00 |
| db: | CNNVD | id: | CNNVD-202211-2465 | date: | 2022-11-18T00:00:00 |
| db: | NVD | id: | CVE-2022-29466 | date: | 2022-11-17T14:30:33.450 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-420999 | date: | 2022-11-11T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-020987 | date: | 2023-11-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-202211-2465 | date: | 2022-11-09T00:00:00 |
| db: | NVD | id: | CVE-2022-29466 | date: | 2022-11-11T16:15:14.110 |