CVE-2022-36392

HIGH

Intel(R) AMT & Intel(R) Standard Manageability <11.8.94-16.1.27 - DoS

Title source: llm

Description

Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access.

References (2)

[Vendor Advisory] http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html

[Vendor Advisory] https://security.netapp.com/advisory/ntap-20230824-0002/

Scores

CVSS v3 8.6

EPSS 0.0016

EPSS Percentile 37.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-20 CWE-116

Status published

Products (1)

intel/converged_security_management_engine_firmware < 11.12.94

Published Aug 11, 2023

Tracked Since Feb 18, 2026