Cyber Resilience

CVE-2022-0004

Medium

Published: 12 May 2022

Published
12 May 2022
Modified
05 May 2025
KEV Added
Patch
CVSS Score v3.1 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0033 56.1th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-0004 is a medium-severity an unspecified weakness vulnerability in Intel Core I3-12100 Firmware. Its CVSS base score is 6.8 (Medium).

Operationally, ranked in the top 43.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Hardware debug modes and processor INIT setting that allow override of locks for some Intel(R) Processors in Intel(R) Boot Guard and Intel(R) TXT may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

intel
core i3-12100 firmware
≤ 16.0.15
intel
core i3-12100f firmware
≤ 16.0.15
intel
core i3-12100t firmware
≤ 16.0.15
intel
core i3-12300t firmware
≤ 16.0.15
intel
core i3-12300 firmware
≤ 16.0.15
intel
core i5-12600t firmware
≤ 16.0.15
intel
core i5-12600kf firmware
≤ 16.0.15
intel
core i5-12600hx firmware
≤ 16.0.15
intel
core i5-12600k firmware
≤ 16.0.15
intel
core i5-12600h firmware
≤ 16.0.15
+388 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References