CVE-2022-36392

HIGH

Intel(R) AMT & Intel(R) Standard Manageability <11.8.94-16.1.27 - DoS

Title source: llm

Description

Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access.

References (2)

Core 2

Core References

Vendor Advisory

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00783.html

Vendor Advisory

https://security.netapp.com/advisory/ntap-20230824-0002/

Scores

CVSS v3 8.6

EPSS 0.0055

EPSS Percentile 41.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-20 CWE-116

Status published

Products (1)

intel/converged_security_management_engine_firmware < 11.12.94

Published Aug 11, 2023

Tracked Since Feb 18, 2026