CVE-2022-29510

Improper buffer restrictions in some Intel(R) Server Board M10JNP2SB BIOS firmware before version 7.219 may allow a privileged user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bp:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpb:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpb24_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpb24:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpb24r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpb24r:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpblc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpblc:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpblc24_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpblc24:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpblc24r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpblc24r:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpblcr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpblcr:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpbr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpbr:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpbrct_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpbrct:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpq_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpq:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpq24_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpq24:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpq24r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpq24r:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpqr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpqr:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpr:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bps_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bps:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bps24_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bps24:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bps24r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bps24r:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:intel:compute_module_hns2600bpsr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpsr:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:intel:server_board_m10jnp2sb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_m10jnp2sb:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:intel:server_board_m20ntp2sb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_m20ntp2sb:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:intel:server_board_m70klp2sb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_m70klp2sb:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:intel:server_board_s2600bpb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpb:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:intel:server_board_s2600bpbr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpbr:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:intel:server_board_s2600bpq_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpq:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:intel:server_board_s2600bpqr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpqr:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:intel:server_board_s2600bps_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bps:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:intel:server_board_s2600bpsr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpsr:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:intel:server_system_m20ntp1ur304_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_m20ntp1ur304:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:intel:server_system_m70klp4s2uhh_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_m70klp4s2uhh:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:intel:server_system_mcb2208wfaf5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_mcb2208wfaf5:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:intel:server_system_vrn2224bpaf6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_vrn2224bpaf6:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:intel:server_system_vrn2224bphy6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_vrn2224bphy6:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:intel:server_system_zsb2224bpaf1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_zsb2224bpaf1:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:intel:server_system_zsb2224bpaf2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_zsb2224bpaf2:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:intel:server_system_zsb2224bphy1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_zsb2224bphy1:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:59

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00719.html - Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00719.html - Vendor Advisory
CVSS v2 : unknown
v3 : 6.7
v2 : unknown
v3 : 7.5

27 Nov 2023, 19:00

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-14 19:15

Updated : 2024-11-21 06:59


NVD link : CVE-2022-29510

Mitre link : CVE-2022-29510

CVE.ORG link : CVE-2022-29510


JSON object : View

Products Affected

intel

  • compute_module_hns2600bps24r
  • server_board_s2600bpsr_firmware
  • server_system_m20ntp1ur304
  • compute_module_hns2600bpbr
  • server_board_s2600bpqr
  • compute_module_hns2600bpblc
  • server_system_mcb2208wfaf5
  • server_system_vrn2224bpaf6_firmware
  • compute_module_hns2600bp_firmware
  • server_board_m70klp2sb
  • compute_module_hns2600bps24
  • compute_module_hns2600bpr_firmware
  • server_system_zsb2224bpaf2_firmware
  • server_system_zsb2224bphy1_firmware
  • server_system_zsb2224bpaf2
  • server_system_vrn2224bphy6_firmware
  • compute_module_hns2600bpblcr
  • compute_module_hns2600bpbr_firmware
  • compute_module_hns2600bpbrct
  • server_system_zsb2224bpaf1_firmware
  • compute_module_hns2600bpblc24r_firmware
  • compute_module_hns2600bps
  • server_board_s2600bpb_firmware
  • server_system_vrn2224bpaf6
  • compute_module_hns2600bps24r_firmware
  • compute_module_hns2600bpqr_firmware
  • server_system_vrn2224bphy6
  • compute_module_hns2600bpblcr_firmware
  • compute_module_hns2600bpq
  • compute_module_hns2600bpq24
  • compute_module_hns2600bpsr
  • compute_module_hns2600bpq24r
  • compute_module_hns2600bpb24r_firmware
  • compute_module_hns2600bpb
  • server_system_m20ntp1ur304_firmware
  • server_system_zsb2224bphy1
  • compute_module_hns2600bp
  • compute_module_hns2600bpq_firmware
  • compute_module_hns2600bpq24r_firmware
  • server_board_s2600bpqr_firmware
  • server_board_s2600bps
  • compute_module_hns2600bpb24
  • compute_module_hns2600bps24_firmware
  • compute_module_hns2600bpblc24r
  • server_board_s2600bpbr
  • compute_module_hns2600bpb24_firmware
  • compute_module_hns2600bpr
  • server_board_m70klp2sb_firmware
  • compute_module_hns2600bpsr_firmware
  • server_board_s2600bpb
  • server_board_s2600bpbr_firmware
  • compute_module_hns2600bpbrct_firmware
  • compute_module_hns2600bpb_firmware
  • compute_module_hns2600bpqr
  • server_board_m20ntp2sb_firmware
  • server_board_s2600bpq
  • server_board_s2600bps_firmware
  • server_system_m70klp4s2uhh
  • compute_module_hns2600bps_firmware
  • server_system_mcb2208wfaf5_firmware
  • compute_module_hns2600bpb24r
  • server_board_m20ntp2sb
  • server_board_s2600bpq_firmware
  • server_board_m10jnp2sb
  • server_system_zsb2224bpaf1
  • compute_module_hns2600bpq24_firmware
  • server_board_s2600bpsr
  • compute_module_hns2600bpblc24_firmware
  • compute_module_hns2600bpblc_firmware
  • compute_module_hns2600bpblc24
  • server_board_m10jnp2sb_firmware
  • server_system_m70klp4s2uhh_firmware
CWE
CWE-92

DEPRECATED: Improper Sanitization of Custom Special Characters

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer