Lucene search
HistoryJan 19, 2024 - 8:15 p.m.
CVE-2023-28738
cve-2023-28738
intel
nuc
bios firmware
input validation
privilege escalation
local access
security vulnerability
nvd
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Improper input validation for some Intel NUC BIOS firmware before version JY0070 may allow a privileged user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelnuc_7_essential_nuc7cjysamnMatch-
intelnuc_7_essential_nuc7cjysamn_firmwareMatchjyglkcpx.0071
Node
intelnuc_kit_nuc7cjyhnMatch-
intelnuc_kit_nuc7cjyhn_firmwareMatchjyglkcpx.0071
Node
intelnuc_kit_nuc7pjyhnMatch-
intelnuc_kit_nuc7pjyhn_firmwareMatchjyglkcpx.0071
Node
intelnuc_kit_nuc7pjyhMatch-
intelnuc_kit_nuc7pjyh_firmwareMatchjyglkcpx.0071
Node
intelnuc_kit_nuc7cjysalMatch-
intelnuc_kit_nuc7cjysal_firmwareMatchjyglkcpx.0071
Node
intelnuc_kit_nuc7cjyhMatch-
intelnuc_kit_nuc7cjyh_firmwareMatchjyglkcpx.0071
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel NUC BIOS firmware",
"versions": [
{
"version": "before version JY0070",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Input validation
2024-01-19 20:15:00
nvd
nvd
CVE-2023-28738
2024-01-19 20:15:09
cvelist
cvelist
CVE-2023-28738
2024-01-19 20:03:10
intel
intel
Intelยฎ NUC BIOS Firmware Advisory
2024-01-09 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-28738