Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2023-29500
HistoryAug 11, 2023 - 3:15 a.m.

CVE-2023-29500

2023-08-1103:15:31
CWE-200
[email protected]
web.nvd.nist.gov
12
cve-2023-29500
bios
firmware
intel
nucs
information disclosure
vulnerability
security

5.3 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

4.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Exposure of sensitive information to an unauthorized actor in BIOS firmware for some Intelยฎ NUCs may allow a privilege user to potentially enable information disclosure via local access.

Affected configurations

NVD
Node
intelnuc_11_performance_kit_nuc11pahi70z_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi70zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi50z_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi50zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi30z_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi30zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi3_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi3Match-
Node
intelnuc_11_performance_kit_nuc11pahi5_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi5Match-
Node
intelnuc_11_performance_kit_nuc11pahi7_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi7Match-
Node
intelnuc_11_performance_kit_nuc11paki3_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11paki3Match-
Node
intelnuc_11_performance_kit_nuc11paki5_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11paki5Match-
Node
intelnuc_11_performance_kit_nuc11paki7_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11paki7Match-
Node
intelnuc_11_performance_mini_pc_nuc11paqi50wa_firmwareMatch-
AND
intelnuc_11_performance_mini_pc_nuc11paqi50waMatch-
Node
intelnuc_11_performance_mini_pc_nuc11paqi70qa_firmwareMatch-
AND
intelnuc_11_performance_mini_pc_nuc11paqi70qaMatch-

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) NUCs",
    "versions": [
      {
        "version": "See references",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

nvd 1
prion 1
cvelist 1
intel 1
nvd
nvd
CVE-2023-29500
2023-08-11 03:15:31
prion
prion
Information disclosure
2023-08-11 03:15:00
cvelist
cvelist
CVE-2023-29500
2023-08-11 02:37:20
intel
intel
Intelยฎ NUC Kit and Mini PC BIOS Firmware Advisory
2023-08-08 00:00:00

5.3 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

4.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CVE-2023-29500
nvd1prion1cvelist1intel1