CVE-2022-29510 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
intel	CNA	7.5 HIGH	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 26%

Vendor	Product	Version
intel	compute_module_hns2600bp_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpb_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpb24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpb24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblc_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblc24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblc24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpblcr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpbr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpbrct_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpq_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpq24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpq24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpqr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpr_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bps_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bps24_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bps24r_firmware	𝑥 < 02.01.0015
intel	compute_module_hns2600bpsr_firmware	𝑥 < 02.01.0015
intel	server_board_m10jnp2sb_firmware	𝑥 < 7.219
intel	server_board_m20ntp2sb_firmware	𝑥 < 0022.d02
intel	server_board_m70klp2sb_firmware	𝑥 < 01.04.0029
intel	server_board_s2600bpb_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpbr_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpq_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpqr_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bps_firmware	𝑥 < 02.01.0015
intel	server_board_s2600bpsr_firmware	𝑥 < 02.01.0015
intel	server_system_m20ntp1ur304_firmware	𝑥 < 0022.d02
intel	server_system_m70klp4s2uhh_firmware	𝑥 < 01.04.0029
intel	server_system_mcb2208wfaf5_firmware	𝑥 < 02.01.0015
intel	server_system_vrn2224bpaf6_firmware	𝑥 < 02.01.0015
intel	server_system_vrn2224bphy6_firmware	𝑥 < 02.01.0015
intel	server_system_zsb2224bpaf1_firmware	𝑥 < 02.01.0015
intel	server_system_zsb2224bpaf2_firmware	𝑥 < 02.01.0015
intel	server_system_zsb2224bphy1_firmware	𝑥 < 02.01.0015

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-92 - DEPRECATED: Improper Sanitization of Custom Special Characters
This entry has been deprecated. It originally came from PLOVER, which sometimes defined "other" and "miscellaneous" categories in order to satisfy exhaustiveness requirements for taxonomies. Within the context of CWE, the use of a more abstract entry is preferred in mapping situations. CWE-75 is a more appropriate mapping.
CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00719.html