CVE-2022-38973

LOW

Intel Arc A750/A770 Firmware - DoS or Info Disclosure via Local Access

Title source: llm

Description

Improper access control for some Intel(R) Arc(TM) graphics cards A770 and A750 Limited Edition sold between October of 2022 and December of 2022 may allow an authenticated user to potentially enable denial of service or infomation disclosure via local access.

References (1)

Core 1

Core References

Vendor Advisory

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00812.html

Scores

CVSS v3 3.3

EPSS 0.0004

EPSS Percentile 12.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-284

Status published

Products (2)

intel/arc_a750_firmware

intel/arc_a770_firmware

Published Aug 11, 2023

Tracked Since Feb 18, 2026