Lucene search
HistoryNov 11, 2022 - 4:15 p.m.
CVE-2022-34152
cve-2022-34152
intel
nuc
bios
firmware
input validation
privilege escalation
security vulnerability
7.7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.7%
Improper input validation in BIOS firmware for some Intelยฎ NUC Boards, Intelยฎ NUC Kits before version TY0070 may allow a privileged user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelnuc_board_de3815tybe_firmwareRange<ty0070
intelnuc_board_de3815tybeMatch-
Node
intelnuc_kit_de3815tykhe_firmwareRange<ty0070
intelnuc_kit_de3815tykheMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| intel:nuc_board_de3815tybe_firmware | intel nuc board de3815tybe firmware | lt | ty0070 |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) NUC Boards, Intel(R) NUC Kits",
"versions": [
{
"version": "before version TY0070",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Social References
More
Related
cvelist
cvelist
CVE-2022-34152
2022-11-11 15:48:51
prion
prion
Input validation
2022-11-11 16:15:00
nvd
nvd
CVE-2022-34152
2022-11-11 16:15:15
intel
intel
Intelยฎ NUC Firmware Advisory
2023-02-16 00:00:00
7.7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.7%
Related for CVE-2022-34152