Operating System:

[WIN][UNIX/Linux]

Published:

27 March 2023

Protect yourself against future threats.

//Service

Member Security Incident Notifications

Be proactive with your security and receive our daily Member Security Incident Notifications (MSINs) custom to your network.

Read more
Resources > Security Bulletins > ESB-2022.3942.2 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                              ESB-2022.3942.2
                    Intel Data Center Manager Advisory
                               27 March 2023

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           Intel Data Center Manager
Publisher:         Intel
Operating System:  Windows
                   UNIX variants (UNIX, Linux, OSX)
Resolution:        Patch/Upgrade
CVE Names:         CVE-2022-24378 CVE-2022-23403 CVE-2022-23182
                   CVE-2022-21225  

Original Bulletin: 
   https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00662.html

Comment: CVSS (Max):  10.0 CVE-2022-21225 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
         CVSS Source: Intel
         Calculator:  https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Revision History:  March  27 2023: Vendor updated bulletin CVE details
                   August 10 2022: Initial Release

- --------------------------BEGIN INCLUDED TEXT--------------------

Intel ID:                       INTEL-SA-00662
Advisory Category:        Software
Impact of vulnerability : Escalation of Privilege, Denial of Service
Severity rating :         CRITICAL
Original release:         08/09/2022
Last revised:             03/24/2023

View all Show less

Summary:

Potential security vulnerabilities in the Intel Data Center Manager software
may allow escalation of privilege or denial of service. Intel is releasing
software updates to mitigate these potential vulnerabilities.

Vulnerability Details:

CVEID: CVE-2022-21225

Description: Improper neutralization in the Intel(R) Data Center Manager
software before version 4.1 may allow an authenticated user to potentially
enable escalation of privilege via network access.

CVSS Base Score: 10.0 Critical

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CVEID: CVE-2022-23182

Description: Improper access control in the Intel(R) Data Center Manager
software before version 4.1 may allow an unauthenticated user to potentially
enable escalation of privilege via network access.

CVSS Base Score: 5.8 Medium

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CVEID: CVE-2022-24378

Description: Improper initialization in the Intel(R) Data Center Manager
software before version 4.1 may allow an authenticated user to potentially
enable denial of service via local access.

CVSS Base Score: 3.3 Low

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CVEID: CVE-2022-23403

Description: Improper input validation in the Intel(R) Data Center Manager
software before version 4.1 may allow an authenticated user to potentially
enable denial of service via local access.

CVSS Base Score: 3.3 Low

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected Products:

Intel Data Center Manager software before version 4.1.

Recommendation:

Intel recommends updating Intel Data Center Manager to version 4.1 or later.

Updates are available for download at this location: https://www.intel.com/
content/www/us/en/download/645992

Acknowledgements:

Intel would like to thank Julien Ahrens from RCE Security CVE-2022-21225 ,
@j00sean CVE-2022-23182 , CVE-2022-24378 and CVE-2022-23403 for reporting these
issues.

Intel, and nearly the entire technology industry, follows a disclosure practice
called Coordinated Disclosure, under which a cybersecurity vulnerability is
generally publicly disclosed only after mitigations are available.

Revision History

Revision    Date                     Description
1.0      08/09/2022 Initial Release
1.1      09/09/2022 Updated description for CVE-2022-21225
1.2      03/24/2023 Updated CVE CVE-2022-21225 and CVE-2022-23182

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: https://auscert.org.au/gpg-key/

iQIVAwUBZCEU48kNZI30y1K9AQhLIA//VmYcCXEmSHc8EqUKrhPMaJZSnlYjpIYz
QIyHz4ysEoMB0bl6aYmsrCzGkZfEX6fl8SNfDZJspbnWEz+SLKQmESsCbm1X1OiP
XV3j1ACJEUY1hSYIjG/wjVPpspx7cX0choB1Vp2+vdlOzFQ5JkBNlYE+rQgsjDr4
GMRXKswk6b2n0AvUR8GSJ0RgIfvqIFdXCPLnPS3a5OywlTFDLv37Bm/SwHbmBWUS
RX5wg3Jlc9IBMB7EvZIVxZgVgi9ACI3ZS7audV6z86lAY/QGcZ4LoJw2JCKQFni6
uLhuJ/AnJ+qzYhyf5oivoVEvKkqbouXf7lDDHSSa+0qBTDhN4GftE8/IGFq/d0dv
9MHynpMf9dNu7Y19TbO4cuxxOjS0g5HdSR3FnPgh0DIst7bWSMgeFweKWi5OlCsn
SrlOaRU3eoRZw8JkBb3BwzbfSD8Riy85XGnp/T+whcbeG51BvBBWMWagJdF304TE
jZg//drlRUkkgwKpeq7ZwgCW91X9ASwhFLLFbRUxWwCpS1h6hSAxoMXrcx7LY5wS
WApgGaoMkdlMOJDPwmuc2mNGQ4r93YeOru94j+cJymsP50oyDqMCnuEHPst35tTd
pPiGKPjCBtet8/bUVDvg+/m+/nh25JJJsmuEZfR/qDo2CkRqrKSvywdH+m8hOUqO
+GR72VMUdsE=
=2i3Z
-----END PGP SIGNATURE-----