CVE-2022-29515
MEDIUMIntel Server Platform Services Firmware - Memory Leak
Title source: ruleDescription
Missing release of memory after effective lifetime in firmware for Intel(R) SPS before versions SPS_E3_06.00.03.035.0 may allow a privileged user to potentially enable denial of service via local access.
Scores
CVSS v3
6.0
EPSS
0.0004
EPSS Percentile
12.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
Classification
CWE
CWE-401
Status
published
Affected Products (1)
intel/server_platform_services_firmware
< sps_e3_06.00.03.035.0
Timeline
Published
Nov 11, 2022
Tracked Since
Feb 18, 2026