Severity
High
Analysis Summary
CVE-2022-26845 CVSS:8.7
Intel AMT could allow a remote attacker to gain elevated privileges on the system, caused by improper authentication in firmware. An attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2022-29893 CVSS:8.1
Intel AMT could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper authentication in firmware. An attacker could exploit this vulnerability to gain elevated privileges on the system.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-26845
- CVE-2022-29893
Affected Vendors
Intel
Affected Products
- Intel AMT 11.0
- Intel AMT 12.0
- Intel AMT 14.0.0
- Intel AMT 15.0.34
Remediation
Refer to INTEL Security Advisory for patch, upgrade or suggested workaround information.
INTEL Security Advisory