Vulnerability Description
Improper input validation in firmware for some Intel(R) PCSD BIOS before version 02.01.0013 may allow a privileged user to potentially enable information disclosure via local access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Pcsd Bios | < 02.01.0013 |
| Intel | R1208Wfqysr | - |
| Intel | R1208Wftys | - |
| Intel | R1208Wftysr | - |
| Intel | R1304Wf0Ys | - |
| Intel | R1304Wf0Ysr | - |
| Intel | R1304Wftys | - |
| Intel | R1304Wftysr | - |
| Intel | R2208Wf0Zs | - |
| Intel | R2208Wf0Zsr | - |
| Intel | R2208Wfqzs | - |
| Intel | R2208Wfqzsr | - |
| Intel | R2208Wftzs | - |
| Intel | R2208Wftzsr | - |
| Intel | R2224Wfqzs | - |
| Intel | R2224Wftzs | - |
| Intel | R2224Wftzsr | - |
| Intel | R2308Wftzs | - |
| Intel | R2308Wftzsr | - |
| Intel | R2312Wf0Np | - |
Related Weaknesses (CWE)
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00742.hVendor Advisory
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00742.hVendor Advisory
FAQ
What is CVE-2022-34657?
CVE-2022-34657 is a vulnerability with a CVSS score of 6.0 (MEDIUM). Improper input validation in firmware for some Intel(R) PCSD BIOS before version 02.01.0013 may allow a privileged user to potentially enable information disclosure via local access.
How severe is CVE-2022-34657?
CVE-2022-34657 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-34657?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Pcsd Bios, Intel R1208Wfqysr, Intel R1208Wftys, Intel R1208Wftysr, Intel R1304Wf0Ys.