Rewterz Threat Advisory – Multiple Intel Server Board Baseboard Management Controller (BMC) Vulnerabilities
May 11, 2023Rewterz Threat Advisory – ICS: Rockwell Automation ThinManager Vulnerability
May 12, 2023Rewterz Threat Advisory – Multiple Intel Server Board Baseboard Management Controller (BMC) Vulnerabilities
May 11, 2023Rewterz Threat Advisory – ICS: Rockwell Automation ThinManager Vulnerability
May 12, 2023Severity
High
Analysis Summary
CVE-2022-41610 CVSS:5
Intel EMA Configuration Tool and Intel MC Software are vulnerable to a denial of service, caused by improper authorization. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.
CVE-2022-45128 CVSS:
Intel EMA Software is vulnerable to a denial of service, caused by improper authorization. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-41610
- CVE-2022-45128
Affected Vendors
Intel
Affected Products
- Intel EMA Configuration Tool software
- Intel MC software
- Intel EMA
Remediation
Refer to INTEL Security Advisory for patch, upgrade or suggested workaround information.