First published: Fri Nov 11 2022(Updated: )
Missing release of memory after effective lifetime in firmware for Intel(R) SPS before versions SPS_E3_06.00.03.035.0 may allow a privileged user to potentially enable denial of service via local access.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel Server Platform Services Firmware | <sps_e3_06.00.03.035.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-29515 is a vulnerability in Intel(R) SPS firmware that allows a privileged user to potentially enable denial of service via local access.
CVE-2022-29515 has a severity keyword of 'medium' and a severity value of 5.5.
The affected software for CVE-2022-29515 is Intel Server Platform Services Firmware before version SPS_E3_06.00.03.035.0.
This vulnerability can be exploited by a privileged user with local access.
Yes, a fix is available for CVE-2022-29515. It is recommended to update to version SPS_E3_06.00.03.035.0 or a later version.