Multiple vulnerabilities in Intel Server Boards BMC Firmware
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2022-40242 CVE-2022-2827 |
| CWE-ID | CWE-522 CWE-284 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Intel Server Board M10JNP2SB Hardware solutions / Firmware Intel Server Board M20NTP Hardware solutions / Firmware Intel Server Board M70KLP2SB Hardware solutions / Firmware |
| Vendor | Intel |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Insufficiently protected credentials
EUVDB-ID: #VU69915
Risk: High
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2022-40242
CWE-ID:
CWE-522 - Insufficiently Protected Credentials
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to escalate privileges on the system.
The vulnerability exists due to insufficiently protected credentials, which leads to security restrictions bypass and privilege escalation.
MitigationInstall updates from vendor's website.
Vulnerable software versionsIntel Server Board M10JNP2SB: before 1.11
Intel Server Board M20NTP: before 0027
Intel Server Board M70KLP2SB: before 4.15
CPE2.3- cpe:2.3:h:intel:intel_server_board_m10jnp2sb:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_server_board_m20ntp:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_server_board_m70klp2sb:*:*:*:*:*:*:*:*
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00801.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper access control
EUVDB-ID: #VU69917
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-2827
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A remote attacker can bypass implemented security restrictions and gain unauthorized access to sensitive information on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsIntel Server Board M10JNP2SB: before 1.11
Intel Server Board M20NTP: before 0027
Intel Server Board M70KLP2SB: before 4.15
CPE2.3- cpe:2.3:h:intel:intel_server_board_m10jnp2sb:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_server_board_m20ntp:*:*:*:*:*:*:*:*
- cpe:2.3:h:intel:intel_server_board_m70klp2sb:*:*:*:*:*:*:*:*
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00801.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
