Vulnerabilities > CVE-2022-24379 - Unspecified vulnerability in Intel products

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2023-11-14

Updated: 2024-08-30

Summary

Improper input validation in some Intel(R) Server System M70KLP Family BIOS firmware before version 01.04.0029 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Server Board M70Klp2Sb Firmware - Intel Server System M70Klp4S2Uhh Firmware -	2
Hardware	Intel Intel Server Board M70Klp2Sb - Intel Server System M70Klp4S2Uhh -	2

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00719.html