Improper Input Validation in Intel Converged Security and Management Engine Affects User Access
CVE-2022-38102
7.2HIGH
Key Information:
- Vendor
Intel
- Vendor
- CVE Published:
- 11 August 2023
What is CVE-2022-38102?
A flaw in the firmware of Intel Converged Security and Management Engine allows improperly validated inputs, enabling a privileged user to potentially induce a denial of service scenario through local access. This could result in operational disruptions if exploited, impacting system integrity and availability.
Affected Version(s)
Intel(R) Converged Security and Management Engine before versions 15.0.45, and 16.1.27