CVE-2022-30542: Input Validation
First published: Fri Nov 11 2022(Updated: )
Improper input validation in the firmware for some Intel(R) Server Board S2600WF, Intel(R) Server System R1000WF and Intel(R) Server System R2000WF families before version R02.01.0014 may allow a privileged user to potentially enable an escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel S2600WFQR Firmware | <=02.01.0014 | |
| Intel S2600WF0 | ||
| Intel R1000WF firmware | <=02.01.0014 | |
| Intel Server System R1000WF | ||
| Intel R2000WF firmware | <=02.01.0014 | |
| Intel R2000WF firmware | ||
| All of | ||
| Intel S2600WFQR Firmware | <=02.01.0014 | |
| Intel S2600WF0 | ||
| All of | ||
| Intel R1000WF firmware | <=02.01.0014 | |
| Intel Server System R1000WF | ||
| All of | ||
| Intel R2000WF firmware | <=02.01.0014 | |
| Intel R2000WF firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-30542?
CVE-2022-30542 has been classified as a high severity vulnerability due to the potential for privilege escalation.
How do I fix CVE-2022-30542?
To fix CVE-2022-30542, update the firmware of affected Intel Server Board S2600WF, Intel Server System R1000WF, or Intel Server System R2000WF devices to version R02.01.0014 or later.
What does CVE-2022-30542 exploit?
CVE-2022-30542 exploits improper input validation in the firmware, potentially allowing a privileged user to escalate privileges.
Which systems are affected by CVE-2022-30542?
CVE-2022-30542 affects Intel Server Board S2600WF, Intel Server System R1000WF, and Intel Server System R2000WF families with firmware versions before R02.01.0014.
Who can be impacted by CVE-2022-30542?
Privileged users with local access to the affected Intel server systems are at risk of potential escalation of privileges due to CVE-2022-30542.
- agent/type
- agent/severity
- agent/references
- agent/remedy
- agent/author
- agent/first-publish-date
- agent/description
- agent/weakness
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/intel
- canonical/intel s2600wfqr firmware
- version/intel s2600wfqr firmware/02.01.0014
- canonical/intel s2600wf0
- canonical/intel r1000wf firmware
- version/intel r1000wf firmware/02.01.0014
- canonical/intel server system r1000wf
- canonical/intel r2000wf firmware
- version/intel r2000wf firmware/02.01.0014