Request a Demo
Rewterz
Rewerz Threat Alert – GCleaner Malware – Active IOCs
February 14, 2023
Rewterz
Rewterz Threat Advisory – Multiple Intel Server Platform Services (SPS) Vulnerabilities
February 15, 2023

Rewterz Threat Advisory – Multiple Intel processors Vulnerabilities

Severity

High

Analysis Summary

CVE-2022-26343 CVSS:8.2

Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper access control in the BIOS firmware. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.

CVE-2022-32231 CVSS:7.5

Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper initialization in the BIOS firmware. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.

CVE-2022-26837 CVSS:7.5

Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper input validation in the BIOS firmware. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.

CVE-2022-30704 CVSS:7.2

Multiple Intel processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper initialization in the TXT SINIT ACM. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.

Impact

  • Privilege Escalation

Indicators Of Compromise

CVE

  • CVE-2022-26343
  • CVE-2022-32231
  • CVE-2022-26837
  • CVE-2022-30704

Affected Vendors

Intel

Affected Products

  • Intel Xeon Scalable Processor
  • Intel 2nd Generation Intel Xeon Scalable Processors
  • Intel Xeon D processor 1500 series
  • Intel Xeon Platinum P-8124 Processor
  • Intel Xeon Platinum P-8136 Processor
  • Intel 3rd Generation Intel Xeon Scalable Processor Family
  • Intel Xeon W Processor Family
  • Intel Xeon E processor family
  • Intel 11th Generation Core Processor Family
  • Intel Celeron J Series
  • Intel Pentium Gold Processor Series
  • Intel 10th Generation Intel Core Processor Family
  • Intel 12th Gen Intel Core processor
  • Intel Celeron processor N series
  • Intel Xeon E-2300 processor family

Remediation

Refer to Intel Security Advisory for patch, upgrade or suggested workaround information.

Intel Security Advisory