CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2022-30601

CVSS 9.8v3.1pub. 2022-08-18upd. 2025-05-05

Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable information disclosure and escalation of privilege via network access.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Intel Active Management Technology Firmware

    OS
    Intel
    wszystkie wersje
  • Intel Standard Manageability

    APP
    Intel
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2017-5689CRITICAL9.8⚠ KEVten sam produkt

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel A...

CVE-2020-8747CRITICAL9.1ten sam produkt

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0...

CVE-2020-8752CRITICAL9.8ten sam produkt

Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22....

CVE-2020-8758CRITICAL9.8ten sam produkt

Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before...

CVE-2020-0594CRITICAL9.8ten sam produkt

Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22...