Strix
26.1K

CVE-2022-21233

MEDIUMCVSS 5.5/10EPSS 0.32%

Last modified

CVE-2022-21233 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.. EPSS estimates a 0.32% chance of exploitation in the next 30 days.

Description

Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.

Metrics

CVSS 3.1
5.5/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Probability
0.32%

24.1th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
IntelPentium J4205 FirmwareAll versions
IntelPentium N4200 FirmwareAll versions
IntelPentium N4200e FirmwareAll versions
IntelCeleron J3455 FirmwareAll versions
IntelCeleron J3355 FirmwareAll versions
IntelCeleron J3455e FirmwareAll versions
IntelCeleron J3355e FirmwareAll versions
IntelCeleron N3450 FirmwareAll versions
IntelCeleron N3350 FirmwareAll versions
IntelCeleron N3350e FirmwareAll versions
IntelAtom X5-A3930 FirmwareAll versions
IntelAtom X5-A3940 FirmwareAll versions
IntelAtom X5-A3950 FirmwareAll versions
IntelAtom X5-A3960 FirmwareAll versions
IntelAtom X5-E3940 FirmwareAll versions
IntelAtom X5-E3930 FirmwareAll versions
IntelAtom X7-E3950 FirmwareAll versions
IntelAtom C3308 FirmwareAll versions
IntelAtom C3336 FirmwareAll versions
IntelAtom C3338 FirmwareAll versions
IntelAtom C3338r FirmwareAll versions
IntelAtom C3436l FirmwareAll versions
IntelAtom C3508 FirmwareAll versions
IntelAtom C3538 FirmwareAll versions
IntelAtom C3558 FirmwareAll versions
IntelAtom C3558r FirmwareAll versions
IntelAtom C3558rc FirmwareAll versions
IntelAtom C3708 FirmwareAll versions
IntelAtom C3750 FirmwareAll versions
IntelAtom C3758 FirmwareAll versions
IntelAtom C3758r FirmwareAll versions
IntelAtom C3808 FirmwareAll versions
IntelAtom C3830 FirmwareAll versions
IntelAtom C3850 FirmwareAll versions
IntelAtom C3858 FirmwareAll versions
IntelAtom C3950 FirmwareAll versions
IntelAtom C3958 FirmwareAll versions
IntelAtom C3955 FirmwareAll versions
IntelXeon Platinum 8300 FirmwareAll versions
IntelXeon Gold 6300 FirmwareAll versions
IntelXeon Gold 5300 FirmwareAll versions
IntelXeon Silver 4300 FirmwareAll versions
IntelXeon D-1513n FirmwareAll versions
IntelXeon D-1518 FirmwareAll versions
IntelXeon D-1520 FirmwareAll versions
IntelXeon D-1521 FirmwareAll versions
IntelXeon D-1523n FirmwareAll versions
IntelXeon D-1524n FirmwareAll versions
IntelXeon D-1527 FirmwareAll versions
IntelXeon D-1528 FirmwareAll versions

Showing 50 of 334 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-21233?
Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
How severe is CVE-2022-21233?
CVE-2022-21233 has a CVSS score of 5.5/10 (MEDIUM severity). The EPSS model estimates a 0.32% probability of exploitation in the next 30 days.
How do I fix CVE-2022-21233?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-21233?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST