nvd-json-data-feeds/CVE-2022/CVE-2022-244xx/CVE-2022-24436.json

{
  "id": "CVE-2022-24436",
  "sourceIdentifier": "secure@intel.com",
  "published": "2022-06-15T21:15:09.293",
  "lastModified": "2022-06-28T15:05:29.613",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "Observable behavioral in power management throttling for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via network access."
    },
    {
      "lang": "es",
      "value": "Un comportamiento observable en la regulaci\u00f3n de la administraci\u00f3n de la energ\u00eda para algunos procesadores Intel(R) puede permitir que un usuario autenticado permita potencialmente una divulgaci\u00f3n de informaci\u00f3n por medio del acceso a la red"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.0
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-203"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:h:intel:*:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "89CBE93C-BB36-4F26-9F73-554C9BB8E131"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://security.netapp.com/advisory/ntap-20220624-0007/",
      "source": "secure@intel.com",
      "tags": [
        "Third Party Advisory"
      ]
    },
    {
      "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00698.html",
      "source": "secure@intel.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}