CVE-2022-35729
First published: Thu Feb 16 2023(Updated: )
Out of bounds read in firmware for OpenBMC in some Intel(R) platforms before version 0.72 may allow unauthenticated user to potentially enable denial of service via network access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenBMC | <0.72 | |
| Intel C621A Firmware | ||
| Intel C624A Firmware | ||
| Intel C627A Firmware | ||
| Intel C629A Firmware | ||
| Intel Xeon Gold 5315y Firmware | ||
| Intel Xeon Gold 5317 Firmware | ||
| Intel Xeon Gold 5318h Firmware | ||
| Intel Xeon Gold 5318n Firmware | ||
| Intel Xeon Gold 5318s Firmware | ||
| Intel Xeon Gold 5318y Firmware | ||
| Intel Xeon Gold 5320 Firmware | ||
| Intel Xeon Gold 5320h Firmware | ||
| Intel Xeon Gold 5320t Firmware | ||
| Intel Xeon Gold 6312U Firmware | ||
| Intel Xeon Gold 6314u Firmware | ||
| Intel Xeon Gold 6326 Firmware | ||
| Intel Xeon Gold 6328H Firmware | ||
| Intel Xeon Gold 6328HL | ||
| Intel Xeon Gold 6330 Firmware | ||
| Intel Xeon Gold 6330H Firmware | ||
| Intel Xeon Gold 6330n Firmware | ||
| Intel Xeon Gold 6334 Firmware | ||
| Intel Xeon Gold 6336Y | ||
| Intel Xeon Gold 6338 | ||
| Intel Xeon Gold 6338n Firmware | ||
| Intel Xeon Gold 6338T | ||
| Intel Xeon Gold 6342 Firmware | ||
| Intel Xeon Gold 6346 Firmware | ||
| Intel Xeon Gold 6348 Firmware | ||
| Intel Xeon Gold 6348H | ||
| Intel Xeon Gold 6354 Firmware | ||
| Intel Xeon Platinum 8351n | ||
| Intel Xeon Platinum 8352M | ||
| Intel Xeon Platinum 8352S | ||
| Intel Xeon Platinum 8352v | ||
| Intel Xeon Platinum 8352y Firmware | ||
| Intel Xeon Platinum 8353h Firmware | ||
| Intel Xeon Platinum 8354H | ||
| Intel Xeon Platinum 8356h Firmware | ||
| Intel Xeon Platinum 8358 | ||
| Intel Xeon Platinum Processors | ||
| Intel Xeon Platinum 8360h Firmware | ||
| Intel Xeon Platinum 8360HL | ||
| Intel Xeon Platinum 8360Y | ||
| Intel Xeon Platinum Processors | ||
| Intel Xeon Platinum 8368 | ||
| Intel Xeon Platinum 8368q Firmware | ||
| Intel Xeon Platinum 8376H Firmware | ||
| Intel Xeon Platinum 8376hl Firmware | ||
| Intel Xeon Platinum 8380 | ||
| Intel Xeon Platinum 8380H Firmware | ||
| Intel Xeon Platinum 8380hl | ||
| Intel Xeon Silver 4309Y | ||
| Intel Xeon Silver 4310 | ||
| Intel Xeon Silver 4310t Firmware | ||
| Intel Xeon Silver 4314 Firmware | ||
| Intel Xeon Silver 4316 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-35729?
CVE-2022-35729 is an out of bounds read vulnerability in the firmware for OpenBMC in some Intel platforms.
How does CVE-2022-35729 impact OpenBMC?
CVE-2022-35729 may allow an unauthenticated user to potentially enable denial of service via network access.
Which Intel platforms are affected by CVE-2022-35729?
Intel platforms with OpenBMC firmware versions before 0.72 may be affected.
What is the severity rating of CVE-2022-35729?
CVE-2022-35729 has a severity rating of 7.5 (high).
Where can I find more information about CVE-2022-35729?
You can find more information about CVE-2022-35729 on the Intel Security Center Advisory page: http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00737.html
- agent/type
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/openbmc-project
- canonical/openbmc
- vendor/intel
- canonical/intel c621a firmware
- canonical/intel c624a firmware
- canonical/intel c627a firmware
- canonical/intel c629a firmware
- canonical/intel xeon gold 5315y firmware
- canonical/intel xeon gold 5317 firmware
- canonical/intel xeon gold 5318h firmware
- canonical/intel xeon gold 5318n firmware
- canonical/intel xeon gold 5318s firmware
- canonical/intel xeon gold 5318y firmware
- canonical/intel xeon gold 5320 firmware
- canonical/intel xeon gold 5320h firmware
- canonical/intel xeon gold 5320t firmware
- canonical/intel xeon gold 6312u firmware
- canonical/intel xeon gold 6314u firmware
- canonical/intel xeon gold 6326 firmware
- canonical/intel xeon gold 6328h firmware
- canonical/intel xeon gold 6328hl
- canonical/intel xeon gold 6330 firmware
- canonical/intel xeon gold 6330h firmware
- canonical/intel xeon gold 6330n firmware
- canonical/intel xeon gold 6334 firmware
- canonical/intel xeon gold 6336y
- canonical/intel xeon gold 6338
- canonical/intel xeon gold 6338n firmware
- canonical/intel xeon gold 6338t
- canonical/intel xeon gold 6342 firmware
- canonical/intel xeon gold 6346 firmware
- canonical/intel xeon gold 6348 firmware
- canonical/intel xeon gold 6348h
- canonical/intel xeon gold 6354 firmware
- canonical/intel xeon platinum 8351n
- canonical/intel xeon platinum 8352m
- canonical/intel xeon platinum 8352s
- canonical/intel xeon platinum 8352v
- canonical/intel xeon platinum 8352y firmware
- canonical/intel xeon platinum 8353h firmware
- canonical/intel xeon platinum 8354h
- canonical/intel xeon platinum 8356h firmware
- canonical/intel xeon platinum 8358
- canonical/intel xeon platinum processors
- canonical/intel xeon platinum 8360h firmware
- canonical/intel xeon platinum 8360hl
- canonical/intel xeon platinum 8360y
- canonical/intel xeon platinum 8368
- canonical/intel xeon platinum 8368q firmware
- canonical/intel xeon platinum 8376h firmware
- canonical/intel xeon platinum 8376hl firmware
- canonical/intel xeon platinum 8380
- canonical/intel xeon platinum 8380h firmware
- canonical/intel xeon platinum 8380hl
- canonical/intel xeon silver 4309y
- canonical/intel xeon silver 4310
- canonical/intel xeon silver 4310t firmware
- canonical/intel xeon silver 4314 firmware
- canonical/intel xeon silver 4316