CVE-2022-30539

EPSS 0.05%
Veröffentlicht 16.02.2023 20:15:14
Zuletzt bearbeitet 21.11.2024 07:02:54
Quelle secure@intel.com
Teams Watchlist Login
Unerledigt Login

Use after free in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Intel ≫ Xeon Gold 5315y Firmware Version-

Intel ≫ Xeon Gold 5315y Version-

Intel ≫ Xeon Gold 5317 Firmware Version-

Intel ≫ Xeon Gold 5317 Version-

Intel ≫ Xeon Gold 5318n Firmware Version-

Intel ≫ Xeon Gold 5318n Version-

Intel ≫ Xeon Gold 5318s Firmware Version-

Intel ≫ Xeon Gold 5318s Version-

Intel ≫ Xeon Gold 5318y Firmware Version-

Intel ≫ Xeon Gold 5318y Version-

Intel ≫ Xeon Gold 5320 Firmware Version-

Intel ≫ Xeon Gold 5320 Version-

Intel ≫ Xeon Gold 5320t Firmware Version-

Intel ≫ Xeon Gold 5320t Version-

Intel ≫ Xeon Gold 6312u Firmware Version-

Intel ≫ Xeon Gold 6312u Version-

Intel ≫ Xeon Gold 6314u Firmware Version-

Intel ≫ Xeon Gold 6314u Version-

Intel ≫ Xeon Gold 6326 Firmware Version-

Intel ≫ Xeon Gold 6326 Version-

Intel ≫ Xeon Gold 6330 Firmware Version-

Intel ≫ Xeon Gold 6330 Version-

Intel ≫ Xeon Gold 6330n Firmware Version-

Intel ≫ Xeon Gold 6330n Version-

Intel ≫ Xeon Gold 6334 Firmware Version-

Intel ≫ Xeon Gold 6334 Version-

Intel ≫ Xeon Gold 6336y Firmware Version-

Intel ≫ Xeon Gold 6336y Version-

Intel ≫ Xeon Gold 6338 Firmware Version-

Intel ≫ Xeon Gold 6338 Version-

Intel ≫ Xeon Gold 6338n Firmware Version-

Intel ≫ Xeon Gold 6338n Version-

Intel ≫ Xeon Gold 6338t Firmware Version-

Intel ≫ Xeon Gold 6338t Version-

Intel ≫ Xeon Gold 6342 Firmware Version-

Intel ≫ Xeon Gold 6342 Version-

Intel ≫ Xeon Gold 6346 Firmware Version-

Intel ≫ Xeon Gold 6346 Version-

Intel ≫ Xeon Gold 6348 Firmware Version-

Intel ≫ Xeon Gold 6348 Version-

Intel ≫ Xeon Gold 6354 Firmware Version-

Intel ≫ Xeon Gold 6354 Version-

Intel ≫ Xeon Platinum 8351n Firmware Version-

Intel ≫ Xeon Platinum 8351n Version-

Intel ≫ Xeon Platinum 8352m Firmware Version-

Intel ≫ Xeon Platinum 8352m Version-

Intel ≫ Xeon Platinum 8352s Firmware Version-

Intel ≫ Xeon Platinum 8352s Version-

Intel ≫ Xeon Platinum 8352v Firmware Version-

Intel ≫ Xeon Platinum 8352v Version-

Intel ≫ Xeon Platinum 8352y Firmware Version-

Intel ≫ Xeon Platinum 8352y Version-

Intel ≫ Xeon Platinum 8358 Firmware Version-

Intel ≫ Xeon Platinum 8358 Version-

Intel ≫ Xeon Platinum 8358p Firmware Version-

Intel ≫ Xeon Platinum 8358p Version-

Intel ≫ Xeon Platinum 8360y Firmware Version-

Intel ≫ Xeon Platinum 8360y Version-

Intel ≫ Xeon Platinum 8362 Firmware Version-

Intel ≫ Xeon Platinum 8362 Version-

Intel ≫ Xeon Platinum 8368 Firmware Version-

Intel ≫ Xeon Platinum 8368 Version-

Intel ≫ Xeon Platinum 8368q Firmware Version-

Intel ≫ Xeon Platinum 8368q Version-

Intel ≫ Xeon Platinum 8380 Firmware Version-

Intel ≫ Xeon Platinum 8380 Version-

Intel ≫ Xeon Silver 4309y Firmware Version-

Intel ≫ Xeon Silver 4309y Version-

Intel ≫ Xeon Silver 4310 Firmware Version-

Intel ≫ Xeon Silver 4310 Version-

Intel ≫ Xeon Silver 4310t Firmware Version-

Intel ≫ Xeon Silver 4310t Version-

Intel ≫ Xeon Silver 4314 Firmware Version-

Intel ≫ Xeon Silver 4314 Version-

Intel ≫ Xeon Silver 4316 Firmware Version-

Intel ≫ Xeon Silver 4316 Version-

Intel ≫ Xeon Gold 6330h Firmware Version-

Intel ≫ Xeon Gold 6330h Version-

Intel ≫ Xeon Platinum 8356h Firmware Version-

Intel ≫ Xeon Platinum 8356h Version-

Intel ≫ Xeon Platinum 8360h Firmware Version-

Intel ≫ Xeon Platinum 8360h Version-

Intel ≫ Xeon Platinum 8360hl Firmware Version-

Intel ≫ Xeon Platinum 8360hl Version-

Intel ≫ Xeon Gold 5318h Firmware Version-

Intel ≫ Xeon Gold 5318h Version-

Intel ≫ Xeon Gold 5320h Firmware Version-

Intel ≫ Xeon Gold 5320h Version-

Intel ≫ Xeon Gold 6328h Firmware Version-

Intel ≫ Xeon Gold 6328h Version-

Intel ≫ Xeon Gold 6328hl Firmware Version-

Intel ≫ Xeon Gold 6328hl Version-

Intel ≫ Xeon Gold 6348h Firmware Version-

Intel ≫ Xeon Gold 6348h Version-

Intel ≫ Xeon Platinum 8353h Firmware Version-

Intel ≫ Xeon Platinum 8353h Version-

Intel ≫ Xeon Platinum 8354h Firmware Version-

Intel ≫ Xeon Platinum 8354h Version-

Intel ≫ Xeon Platinum 8376h Firmware Version-

Intel ≫ Xeon Platinum 8376h Version-

Intel ≫ Xeon Platinum 8376hl Firmware Version-

Intel ≫ Xeon Platinum 8376hl Version-

Intel ≫ Xeon Platinum 8380h Firmware Version-

Intel ≫ Xeon Platinum 8380h Version-

Intel ≫ Xeon Platinum 8380hl Firmware Version-

Intel ≫ Xeon Platinum 8380hl Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.156

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
secure@intel.com	7.5	0.8	6	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00717.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-30539

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-30539

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-30539

EUVD