CVE-2022-36382

MEDIUM

Intel Ethernet <1.7.0.8, <9.101 - DoS

Title source: llm

Description

Out-of-bounds write in firmware for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 1.7.0.8 and some Intel(R) Ethernet 700 Series Controllers and Adapters before version 9.101 may allow a privileged user to potentially enable denial of service via local access.

References (1)

Core 1

Core References

Vendor Advisory

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00754.html

Scores

CVSS v3 6.0

EPSS 0.0006

EPSS Percentile 17.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-787

Status published

Products (15)

intel/ethernet_controller_x710-am2_firmware < 9.101

intel/ethernet_controller_x710-bm2_firmware < 9.101

intel/ethernet_controller_xl710-am1_firmware < 9.101

intel/ethernet_controller_xl710-am2_firmware < 9.101

intel/ethernet_controller_xl710-bm1_firmware < 9.101

intel/ethernet_controller_xl710-bm2_firmware < 9.101

intel/ethernet_controller_xxv710-am1_firmware < 9.101

intel/ethernet_controller_xxv710-am2_firmware < 9.101

intel/ethernet_converged_network_adapter_x710-da2_firmware < 9.101

intel/ethernet_converged_network_adapter_x710-da4_firmware < 9.101

... and 5 more

Published Feb 16, 2023

Tracked Since Feb 18, 2026