CVE-2022-30601

EPSS 1.56%
Veröffentlicht 18.08.2022 21:15:08
Zuletzt bearbeitet 05.05.2025 17:18:12
Quelle secure@intel.com
CVE-Watchlists
Login
Unerledigt
Login

Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable information disclosure and escalation of privilege via network access.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Intel ≫ Standard Manageability

Intel ≫ Active Management Technology Firmware

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.56%	0.809

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-522 Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

https://security.netapp.com/advisory/ntap-20221014-0004/

Third Party Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00709.html

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2022-30601

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-30601

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-30601

EUVD