CVE-2022-38787 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.7 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
intel	CNA	5.7 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 9%

Vendor	Product	Version
intel	agilex_7_fpga_f-series_019_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_023_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_006_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_008_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_027_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_014_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_012_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_f-series_022_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_022_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_041_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_035_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_027_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_019_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_040_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_i-series_023_firmware	𝑥 ≤ 2.7.0
intel	agilex_7_fpga_m-series_039_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_nx_2100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_dx_2800_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_dx_2100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_dx_1100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_1650_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_2500_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_2100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_850_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_400_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_1100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_tx_2800_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_650_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_400_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_1100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_850_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_1650_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_2100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_2500_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_sx_2800_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_mx_2100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_mx_1650_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_2110_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_1660_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_650_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_400_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_850_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_2100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_1100_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_2500_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_10m_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_2800_fpga_firmware	𝑥 ≤ 2.7.0
intel	stratix_10_gx_1650_fpga_firmware	𝑥 ≤ 2.7.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00824.html