Lucene search
HistoryJan 19, 2024 - 8:15 p.m.
CVE-2023-28743
cve-2023-28743
intel nuc
bios firmware
input validation
privilege escalation
local access
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Improper input validation for some Intel NUC BIOS firmware before version QN0073 may allow a privileged user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelnuc_9_pro_compute_element_nuc9v7qnb_firmwareMatchqncflx70.0073
intelnuc_9_pro_compute_element_nuc9v7qnbMatch-
Node
intelnuc_pro_compute_element_nuc9v7qnx_firmwareMatchqncflx70.0073
intelnuc_9_pro_compute_element_nuc9v7qnxMatch-
Node
intelnuc_9_pro_kit_nuc9v7qnb_firmwareMatchqncflx70.0073
intelnuc_9_pro_kit_nuc9v7qnbMatch-
Node
intelnuc_9_pro_kit_nuc9v7qnx_firmwareMatchqncflx70.0073
intelnuc_9_pro_kit_nuc9v7qnxMatch-
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel NUC BIOS firmware",
"versions": [
{
"version": "before version QN0073",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Input validation
2024-01-19 20:15:00
cvelist
cvelist
CVE-2023-28743
2024-01-19 20:03:10
nvd
nvd
CVE-2023-28743
2024-01-19 20:15:09
intel
intel
Intelยฎ NUC BIOS Firmware Advisory
2024-01-09 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-28743