Vulnerability Description
Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Atom C3338R Firmware | - |
| Intel | Atom C3338R | - |
| Intel | Atom C3436L Firmware | - |
| Intel | Atom C3436L | - |
| Intel | Atom C3558R Firmware | - |
| Intel | Atom C3558R | - |
| Intel | Atom C3758R Firmware | - |
| Intel | Atom C3758R | - |
| Intel | Atom C3336 Firmware | - |
| Intel | Atom C3336 | - |
| Intel | Atom C3308 Firmware | - |
| Intel | Atom C3308 | - |
| Intel | Atom C3508 Firmware | - |
| Intel | Atom C3508 | - |
| Intel | Atom C3538 Firmware | - |
| Intel | Atom C3538 | - |
| Intel | Atom C3558 Firmware | - |
| Intel | Atom C3558 | - |
| Intel | Atom C3708 Firmware | - |
| Intel | Atom C3708 | - |
Related Weaknesses (CWE)
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00813.hVendor Advisory
- https://security.netapp.com/advisory/ntap-20230824-0001/
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00813.hVendor Advisory
- https://security.netapp.com/advisory/ntap-20230824-0001/
FAQ
What is CVE-2022-37343?
CVE-2022-37343 is a vulnerability with a CVSS score of 7.2 (HIGH). Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
How severe is CVE-2022-37343?
CVE-2022-37343 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-37343?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Atom C3338R Firmware, Intel Atom C3338R, Intel Atom C3436L Firmware, Intel Atom C3436L, Intel Atom C3558R Firmware.