Lucene search
HistoryMay 10, 2023 - 2:15 p.m.
CVE-2022-38101
cve-2022-38101
intel
nuc
chaco canyon
bios
update
software
uncontrolled search path
privilege escalation
local access
nvd
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Uncontrolled search path in some Intel® NUC Chaco Canyon BIOS update software before version iFlashV Windows 5.13.00.2105 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
inteliflashvRange<5.13.00.2105windows
intelnuc_8_rugged_kit_nuc8cchkrMatch-
ORintelnuc_board_nuc8cchbMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| intel:iflashv | intel iflashv | lt | 5.13.00.2105 |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) NUC Chaco Canyon BIOS update software",
"versions": [
{
"version": "before version iFlashV Windows 5.13.00.2105",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Design/Logic Flaw
2023-05-10 14:15:00
nvd
nvd
CVE-2022-38101
2023-05-10 14:15:13
intel
intel
Intel® NUC BIOS Update Software Advisory
2023-05-09 00:00:00
cvelist
cvelist
CVE-2022-38101
2023-05-10 13:17:19
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2022-38101