Vulnerabilities > CVE-2022-28709 - Unspecified vulnerability in Intel Ethernet Controller E810 Firmware

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2022-08-18

Updated: 2023-08-08

Summary

Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.1.9 may allow a privileged user to potentially enable denial of service via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Ethernet Controller E810 Firmware - Intel Ethernet Controller E810 Firmware 1.3.19 Intel Ethernet Controller E810 Firmware 1.4.11 Intel Ethernet Controller E810 Firmware 1.5.1.0 Intel Ethernet Controller E810 Firmware 1.5.3.0 Intel Ethernet Controller E810 Firmware 1.5.4.0 Intel Ethernet Controller E810 Firmware 1.6.0.6	8
Hardware	Intel Intel Ethernet Controller E810 -	1

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00593.html