Lucene search

[email protected]CVE-2022-24297

HistoryMay 12, 2022 - 5:15 p.m.

CVE-2022-24297

2022-05-1217:15:10

[email protected]

web.nvd.nist.gov

cve-2022-24297

intel nucs

firmware

buffer restrictions

escalation of privilege

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

Improper buffer restrictions in firmware for some Intel® NUCs may allow a privileged user to potentially enable escalation of privilege via local access.

Affected configurations

NVD

Node

intellapbc510_firmwareRange<bctgl357.0065

AND

intellapbc510Match-

Node

intellapbc710_firmwareRange<bctgl357.0065

AND

intellapbc710Match-

Node

intellapkc71f_firmwareRange<kctgl357.0040

AND

intellapkc71fMatch-

Node

intellapkc71e_firmwareRange<kctgl357.0040

AND

intellapkc71eMatch-

Node

intellapkc51e_firmwareRange<kctgl357.0040

AND

intellapkc51eMatch-

Node

intelnuc11dbbi9_firmwareRange<dbtgl579.0055

AND

intelnuc11dbbi9Match-

Node

intelnuc11dbbi7_firmwareRange<dbtgl579.0055

AND

intelnuc11dbbi7Match-

Node

intelnuc11btmi7_firmwareRange<dbtgl579.0055

AND

intelnuc11btmi7Match-

Node

intelnuc11btmi9_firmwareRange<dbtgl579.0055

AND

intelnuc11btmi9Match-

Node

intelnuc_11_compute_element_cm11ebc4w_firmwareRange<ebtgl357.0057

AND

intelnuc_11_compute_element_cm11ebc4wMatch-

Node

intelnuc_11_compute_element_cm11ebi38w_firmwareRange<ebtgl357.0057

AND

intelnuc_11_compute_element_cm11ebi38wMatch-

Node

intelnuc_11_compute_element_cm11ebi58w_firmwareRange<ebtgl357.0057

AND

intelnuc_11_compute_element_cm11ebi58wMatch-

Node

intelnuc_11_compute_element_cm11ebi716w_firmwareRange<ebtgl357.0057

AND

intelnuc_11_compute_element_cm11ebi716wMatch-

Node

intelnuc11paq_firmwareRange<patgl357.0042

AND

intelnuc11paqMatch-

Node

intelnuc11pah_firmwareRange<patgl357.0042

AND

intelnuc11pahMatch-

Node

intelnuc11pa_firmwareRange<patgl357.0042

AND

intelnuc11paMatch-

Node

intelnuc_11_pro_board_nuc11tnbi30z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_board_nuc11tnbi30zMatch-

Node

intelnuc_11_pro_board_nuc11tnbi50z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_board_nuc11tnbi50zMatch-

Node

intelnuc_11_pro_board_nuc11tnbi70z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_board_nuc11tnbi70zMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi50z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi50zMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi70z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi70zMatch-

Node

intelnuc_11_pro_kit_nuc11tnki70z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnki70zMatch-

Node

intelnuc_11_pro_kit_nuc11tnki30z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnki30zMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi30z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi30zMatch-

Node

intelnuc_11_pro_kit_nuc11tnki50z_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnki50zMatch-

Node

intelnuc_11_pro_board_nuc11tnbi3_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_board_nuc11tnbi3Match-

Node

intelnuc_11_pro_board_nuc11tnbi5_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_board_nuc11tnbi5Match-

Node

intelnuc_11_pro_board_nuc11tnbi7_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_board_nuc11tnbi7Match-

Node

intelnuc_11_pro_kit_nuc11tnhi3_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi3Match-

Node

intelnuc_11_pro_kit_nuc11tnhi5_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi5Match-

Node

intelnuc_11_pro_kit_nuc11tnhi7_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi7Match-

Node

intelnuc_11_pro_kit_nuc11tnki3_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnki3Match-

Node

intelnuc_11_pro_kit_nuc11tnki5_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnki5Match-

Node

intelnuc_11_pro_kit_nuc11tnki7_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnki7Match-

Node

intelnuc_11_pro_kit_nuc11tnhi30l_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi30lMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi30p_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi30pMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi50l_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi50lMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi50w_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi50wMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi70l_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi70lMatch-

Node

intelnuc_11_pro_kit_nuc11tnhi70q_firmwareRange<tntgl357.0059

AND

intelnuc_11_pro_kit_nuc11tnhi70qMatch-

Node

intelnuc_11_enthusiast_kit_nuc11phki7c_firmwareRange<phtgl579.0064

AND

intelnuc_11_enthusiast_kit_nuc11phki7cMatch-

Node

intelnuc_11_enthusiast_mini_pc_nuc11phki7caa_firmwareRange<phtgl579.0064

AND

intelnuc_11_enthusiast_mini_pc_nuc11phki7caaMatch-

Node

intelnuc_9_pro_compute_element_nuc9v7qnb_firmwareRange<qncflx70.0064

AND

intelnuc_9_pro_compute_element_nuc9v7qnbMatch-

Node

intelnuc_9_pro_compute_element_nuc9vxqnb_firmwareRange<qncflx70.0064

AND

intelnuc_9_pro_compute_element_nuc9vxqnbMatch-

Node

intelnuc_9_pro_kit_nuc9v7qnx_firmwareRange<qncflx70.0064

AND

intelnuc_9_pro_kit_nuc9v7qnxMatch-

Node

intelnuc_9_pro_kit_nuc9vxqnx_firmwareRange<qncflx70.0064

AND

intelnuc_9_pro_kit_nuc9vxqnxMatch-

Node

intelnuc9i5qn_firmwareRange<qxcfl579.0064

AND

intelnuc9i5qnMatch-

Node

intelnuc9i7qn_firmwareRange<qxcfl579.0064

AND

intelnuc9i7qnMatch-

Node

intelnuc9i9qn_firmwareRange<qxcfl579.0064

AND

intelnuc9i9qnMatch-

Node

intelnuc8i3cysn_firmwareRange<cycnli35.86a.0050

AND

intelnuc8i3cysnMatch-

Node

intelnuc8i3cysm_firmwareRange<cycnli35.86a.0050

AND

intelnuc8i3cysmMatch-

Node

intelnuc_8_compute_element_cm8ccb_firmwareRange<cbwhl.0095

AND

intelnuc_8_compute_element_cm8ccbMatch-

Node

intelnuc_8_compute_element_cm8i3cb_firmwareRange<cbwhl.0095

AND

intelnuc_8_compute_element_cm8i3cbMatch-

Node

intelnuc_8_compute_element_cm8i5cb_firmwareRange<cbwhl.0095

AND

intelnuc_8_compute_element_cm8i5cbMatch-

Node

intelnuc_8_compute_element_cm8i7cb_firmwareRange<cbwhl.0095

AND

intelnuc_8_compute_element_cm8i7cbMatch-

Node

intelnuc_8_compute_element_cm8pcb_firmwareRange<cbwhl.0095

AND

intelnuc_8_compute_element_cm8pcbMatch-

Node

intelnuc_kit_nuc8i7be_firmwareRange<becfl357.0089

AND

intelnuc_kit_nuc8i7beMatch-

Node

intelnuc_kit_nuc8i5be_firmwareRange<becfl357.0089

AND

intelnuc_kit_nuc8i5beMatch-

Node

intelnuc_kit_nuc8i3b_firmwareRange<becfl357.0089

AND

intelnuc_kit_nuc8i3bMatch-

CPENameOperatorVersion
intel:lapbc510_firmwareintel lapbc510 firmwareltbctgl357.0065

CPE	Name	Operator	Version
intel:lapbc510_firmware	intel lapbc510 firmware	lt	bctgl357.0065

CNA Affected

[
  {
    "product": "Intel(R) NUCs",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "See references"
      }
    ]
  }
]

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00654.html

Social References

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVE-2022-24297

nvd1 prion1 cvelist1 intel1