high
8.6
CWE
20
Advisory Published
Updated

CVE-2022-36392: Input Validation

First published: Fri Aug 11 2023(Updated: )

Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access.

Credit: secure@intel.com secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel Converged Security Management Engine Firmware<11.12.94
Intel C232
Intel C236
Intel C420
Intel C422
Intel Cm236
Intel Cm238
Intel X299
Intel Converged Security Management Engine Firmware<11.8.94
Intel B150
Intel B250
Intel Core I3-8100
Intel Core I3-8100b
Intel Core I3-8100h
Intel Core I3-8100t
Intel Core I3-8109u
Intel Core I3-8130u
Intel Core I3-8140u
Intel Core I3-8145u
Intel Core I3-8145ue
Intel Core I3-8300
Intel Core I3-8300t
Intel Core I3-8350k
Intel Core I5-8200y
Intel Core I5-8210y
Intel Core I5-8250u
Intel Core I5-8257u
Intel Core I5-8259u
Intel Core I5-8260u
Intel Core I5-8265u
Intel Core I5-8269u
Intel Core I5-8279u
Intel Core I5-8300h
Intel Core I5-8305g
Intel Core I5-8310y
Intel Core I5-8350u
Intel Core I5-8365u
Intel Core I5-8365ue
Intel Core I5-8400
Intel Core I5-8400b
Intel Core I5-8400h
Intel Core I5-8400t
Intel Core I5-8500
Intel Core I5-8500b
Intel Core I5-8500t
Intel Core I5-8600
Intel Core I5-8600k
Intel Core I5-8600t
Intel Core I7\+8700
Intel Core I7-8086k
Intel Core I7-8500y
Intel Core I7-8550u
Intel Core I7-8557u
Intel Core I7-8559u
Intel Core I7-8565u
Intel Core I7-8569u
Intel Core I7-8650u
Intel Core I7-8665u
Intel Core I7-8665ue
Intel Core I7-8700
Intel Core I7-8700b
Intel Core I7-8700k
Intel Core I7-8700t
Intel Core I7-8705g
Intel Core I7-8706g
Intel Core I7-8709g
Intel Core I7-8750h
Intel Core I7-8809g
Intel Core I7-8850h
Intel Core I9-8950hk
Intel Core M3-8100y
Intel H110
Intel H170
Intel H270
Intel Hm170
Intel Hm175
Intel Q150
Intel Q170
Intel Q250
Intel Q270
Intel Qm170
Intel Qm175
Intel Z170
Intel Z270
Intel Converged Security Management Engine Firmware<12.0.93
Intel B360
Intel B365
Intel C242
Intel C246
Intel Celeron 4205u
Intel Celeron 4305u
Intel Celeron 4305ue
Intel Cm246
Intel H310
Intel H370
Intel Hm370
Intel Pentium Gold 5405u
Intel Q370
Intel Qm370
Intel Z370
Intel Z390
Intel Converged Security Management Engine Firmware<14.1.70
Intel Converged Security Management Engine Firmware>=14.5.0<14.5.50
Intel B460
Intel H410
Intel H420e
Intel H470
Intel Hm470
Intel Q470
Intel Q470e
Intel Qm480
Intel W480
Intel W480e
Intel Wm490
Intel Z490
Intel Converged Security Management Engine Firmware<15.0.45
Intel B560
Intel H510
Intel H570
Intel Hm570
Intel Hm570e
Intel Q570
Intel Qm580
Intel Qm580e
Intel Rm590e
Intel W580
Intel Wm590
Intel Z590
Intel Converged Security Management Engine Firmware<16.1.27
Intel B660
Intel H610
Intel H610e
Intel H670
Intel Hm670
Intel Q670
Intel Q670e
Intel R680e
Intel W680
Intel Wm690
Intel Z690

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203