ID
VAR-202302-1460
CVE
CVE-2022-32971
TITLE
Intel's system usage report Authentication vulnerability in
Trust: 0.8
sources:
JVNDB: JVNDB-2022-019744
DESCRIPTION
Improper authentication in the Intel(R) SUR software before version 2.4.8902 may allow a privileged user to potentially enable escalation of privilege via network access. Intel's system usage report There is an authentication vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state
Trust: 1.8
sources:
NVD: CVE-2022-32971 //
JVNDB: JVNDB-2022-019744 //
VULHUB: VHN-430913 //
VULMON: CVE-2022-32971
AFFECTED PRODUCTS
| vendor: | intel | model: | system usage report | scope: | lt | version: | 2.4.8902 | Trust: 1.0 |
| vendor: | インテル | model: | system usage report | scope: | eq | version: | 2.4.8902 | Trust: 0.8 |
| vendor: | インテル | model: | system usage report | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | インテル | model: | system usage report | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-019744 //
NVD: CVE-2022-32971
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2022-019744 //
CNNVD: CNNVD-202302-1482 //
NVD: CVE-2022-32971 //
NVD: CVE-2022-32971
PROBLEMTYPE DATA
| problemtype: | CWE-287 | Trust: 1.1 |
| problemtype: | Inappropriate authentication (CWE-287) [NVD evaluation ] | Trust: 0.8 |
sources:
VULHUB: VHN-430913 //
JVNDB: JVNDB-2022-019744 //
NVD: CVE-2022-32971
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202302-1482
TYPE
authorization issue
Trust: 0.6
sources:
CNNVD: CNNVD-202302-1482
PATCH
| title: | Intel SUR Remediation measures for authorization problem vulnerabilities | url: | http://123.124.177.30/web/xxk/bdxqById.tag?id=226987 | Trust: 0.6 |
sources:
CNNVD: CNNVD-202302-1482
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-32971 | Trust: 3.4 |
| db: | JVN | id: | JVNVU91223897 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2022-019744 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202302-1482 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-430913 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2022-32971 | Trust: 0.1 |
sources:
VULHUB: VHN-430913 //
VULMON: CVE-2022-32971 //
JVNDB: JVNDB-2022-019744 //
CNNVD: CNNVD-202302-1482 //
NVD: CVE-2022-32971
REFERENCES
| url: | http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00729.html | Trust: 2.6 |
| url: | https://jvn.jp/vu/jvnvu91223897/ | Trust: 0.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-32971 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-32971/ | Trust: 0.6 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-430913 //
VULMON: CVE-2022-32971 //
JVNDB: JVNDB-2022-019744 //
CNNVD: CNNVD-202302-1482 //
NVD: CVE-2022-32971
SOURCES
| db: | VULHUB | id: | VHN-430913 |
| db: | VULMON | id: | CVE-2022-32971 |
| db: | JVNDB | id: | JVNDB-2022-019744 |
| db: | CNNVD | id: | CNNVD-202302-1482 |
| db: | NVD | id: | CVE-2022-32971 |
LAST UPDATE DATE
2024-08-14T12:14:43.156000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-430913 | date: | 2023-02-27T00:00:00 |
| db: | VULMON | id: | CVE-2022-32971 | date: | 2023-02-17T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-019744 | date: | 2023-10-27T05:47:00 |
| db: | CNNVD | id: | CNNVD-202302-1482 | date: | 2023-02-28T00:00:00 |
| db: | NVD | id: | CVE-2022-32971 | date: | 2023-02-27T19:00:17.990 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-430913 | date: | 2023-02-16T00:00:00 |
| db: | VULMON | id: | CVE-2022-32971 | date: | 2023-02-16T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-019744 | date: | 2023-10-27T00:00:00 |
| db: | CNNVD | id: | CNNVD-202302-1482 | date: | 2023-02-16T00:00:00 |
| db: | NVD | id: | CVE-2022-32971 | date: | 2023-02-16T21:15:12.297 |