CVE-2022-21229

2022-08-1820:15:10

[email protected]

web.nvd.nist.gov

cve-2022-21229

intel nuc

buffer restrictions

privilege escalation

nvd

security vulnerability

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Improper buffer restrictions for some Intel® NUC 9 Extreme Laptop Kit drivers before version 2.2.0.22 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

Vulners

NVD

Node

intelnuc_9_extreme_laptop_kit_lapqc71bRange<2.2.0.22

CPENameOperatorVersion
intel:control_centerintel control centerlt2.2.0.22

CPE	Name	Operator	Version
intel:control_center	intel control center	lt	2.2.0.22

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) NUC 9 Extreme Laptop Kit drivers",
    "versions": [
      {
        "version": "before version 2.2.0.22",
        "status": "affected"
      }
    ]
  }
]