Vulnerability Description
Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a privileged user to potentially enable denial of service via network access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Baseboard Management Controller Firmware | < 2.86 |
| Intel | C621 | - |
| Intel | C622 | - |
| Intel | C624 | - |
| Intel | C625 | - |
| Intel | C626 | - |
| Intel | C627 | - |
| Intel | C628 | - |
| Intel | C629 | - |
| Intel | Xeon Bronze 3104 | - |
| Intel | Xeon Bronze 3106 | - |
| Intel | Xeon Bronze 3204 | - |
| Intel | Xeon Bronze 3206R | - |
| Intel | Xeon Gold 5115 | - |
| Intel | Xeon Gold 5118 | - |
| Intel | Xeon Gold 5119T | - |
| Intel | Xeon Gold 5120 | - |
| Intel | Xeon Gold 5120T | - |
| Intel | Xeon Gold 5122 | - |
| Intel | Xeon Gold 5215 | - |
Related Weaknesses (CWE)
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00737.hVendor Advisory
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00737.hVendor Advisory
FAQ
What is CVE-2022-29493?
CVE-2022-29493 is a vulnerability with a CVSS score of 4.5 (MEDIUM). Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a privileged user to potentially enable denial of service via network ac...
How severe is CVE-2022-29493?
CVE-2022-29493 has been rated MEDIUM with a CVSS base score of 4.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-29493?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Baseboard Management Controller Firmware, Intel C621, Intel C622, Intel C624, Intel C625.