March 22, 2024
Severity High Analysis Summary Ducktail Malware is a malicious program designed by hackers to infiltrate computers and networks globally. Ducktail malware is typically delivered through a […]
Rewerz Threat Alert – GCleaner Malware – Active IOCs
February 14, 2023
Rewterz Threat Advisory – Multiple Intel Server Platform Services (SPS) Vulnerabilities
February 15, 2023
Rewerz Threat Alert – GCleaner Malware – Active IOCs
February 14, 2023
Rewterz Threat Advisory – Multiple Intel Server Platform Services (SPS) Vulnerabilities
February 15, 2023
Severity
High
Analysis Summary
CVE-2022-26343 CVSS:8.2
Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper access control in the BIOS firmware. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.
CVE-2022-32231 CVSS:7.5
Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper initialization in the BIOS firmware. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.
CVE-2022-26837 CVSS:7.5
Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper input validation in the BIOS firmware. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.
CVE-2022-30704 CVSS:7.2
Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper initialization in the TXT SINIT ACM. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-26343
- CVE-2022-32231
- CVE-2022-26837
- CVE-2022-30704
Affected Vendors
Intel
Affected Products
- Intel Xeon Scalable Processor
- Intel 2nd Generation Intel Xeon Scalable Processors
- Intel Xeon D processor 1500 series
- Intel Xeon Platinum P-8124 Processor
- Intel Xeon Platinum P-8136 Processor
- Intel 3rd Generation Intel Xeon Scalable Processor Family
- Intel Xeon W Processor Family
- Intel Xeon E processor family
- Intel 11th Generation Core Processor Family
- Intel Celeron J Series
- Intel Pentium Gold Processor Series
- Intel 10th Generation Intel Core Processor Family
- Intel 12th Gen Intel Core processor
- Intel Celeron processor N series
- Intel Xeon E-2300 processor family
Remediation
Refer to Intel Security Advisory for patch, upgrade or suggested workaround information.