CVE-2022-21180

high-risk
Published 2022-06-15

Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access.

Do I need to act?

-
0.08% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (20)

Xeon E3-1585 V5 Firmware
Xeon E3-1585L V5 Firmware
Xeon E3-1578L V5 Firmware
Xeon E3-1575M V5 Firmware
Xeon E3-1565L V5 Firmware
Xeon E3-1558L V5 Firmware
Xeon E3-1545M V5 Firmware
Xeon E3-1535M V5 Firmware
Xeon E3-1515M V5 Firmware
Xeon E3-1505M V5 Firmware
Xeon E3-1505L V5 Firmware
Xeon E3-1280 V5 Firmware
Xeon E3-1275 V5 Firmware
Xeon E3-1270 V5 Firmware
Xeon E3-1268L V5 Firmware
Xeon E3-1260L V5 Firmware
Xeon E3-1245 V5 Firmware
Xeon E3-1240L V5 Firmware
Xeon E3-1240 V5 Firmware
Xeon E3-1235L V5 Firmware

Affected Vendors

Intel

References (6)

Mailing List http://www.openwall.com/lists/oss-security/2022/06/16/1
Third Party Advisory https://security.netapp.com/advisory/ntap-20220624-0006/
Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00645....
Mailing List http://www.openwall.com/lists/oss-security/2022/06/16/1
Third Party Advisory https://security.netapp.com/advisory/ntap-20220624-0006/
Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00645....
51
/ 100
high-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 33/34 · Critical