Lucene search

[email protected]NVD:CVE-2022-31477

HistoryMay 10, 2023 - 2:15 p.m.

CVE-2022-31477

2023-05-1014:15:11

CWE-665

[email protected]

web.nvd.nist.gov

cve-2022-31477

initialization

intel nuc

bios firmware

information disclosure

local access

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

4.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper initialization for some Intel® NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.

Affected configurations

NVD

Node

intelnuc11pahi3_firmwareMatch-

AND

intelnuc11pahi3Match-

Node

intelnuc11pahi30z_firmwareMatch-

AND

intelnuc11pahi30zMatch-

Node

intelnuc11paki3_firmwareMatch-

AND

intelnuc11paki3Match-

Node

intelnuc11pahi5_firmwareMatch-

AND

intelnuc11pahi5Match-

Node

intelnuc11pahi50z_firmwareMatch-

AND

intelnuc11pahi50zMatch-

Node

intelnuc11paki5_firmwareMatch-

AND

intelnuc11paki5Match-

Node

intelnuc11paqi50waMatch-

AND

intelnuc11paqi50wa_firmwareMatch-

Node

intelnuc11pahi7Match-

AND

intelnuc11pahi7_firmwareMatch-

Node

intelnuc11pahi70zMatch-

AND

intelnuc11pahi70z_firmwareMatch-

Node

intelnuc11paki7Match-

AND

intelnuc11paki7_firmwareMatch-

Node

intelnuc11paqi70qaMatch-

AND

intelnuc11paqi70qa_firmwareMatch-

Node

intelcm11ebi38wMatch-

AND

intelcm11ebi38w_firmwareMatch-

Node

intelcm11ebi58wMatch-

AND

intelcm11ebi58w_firmwareMatch-

Node

intelcm11ebi716wMatch-

AND

intelcm11ebi716w_firmwareMatch-

Node

intelcm11ebc4wMatch-

AND

intelcm11ebc4w_firmwareMatch-

Node

intellapbc510Match-

AND

intellapbc510_firmwareMatch-

Node

intellapbc710Match-

AND

intellapbc710_firmwareMatch-

Node

intellapkc51eMatch-

AND

intellapkc51e_firmwareMatch-

Node

intellapkc71e_firmwareMatch-

AND

intellapkc71eMatch-

Node

intellapkc71f_firmwareMatch-

AND

intellapkc71fMatch-

Node

intelnuc11btmi7_firmwareMatch-

AND

intelnuc11btmi7Match-

Node

intelnuc11dbbi7_firmwareMatch-

AND

intelnuc11dbbi7Match-

Node

intelnuc11btmi9_firmwareMatch-

AND

intelnuc11btmi9Match-

Node

intelnuc11dbbi9_firmwareMatch-

AND

intelnuc11dbbi9Match-

Node

intelnuc11phki7c_firmwareMatch-

AND

intelnuc11phki7cMatch-

Node

intelnuc11phki7caa_firmwareMatch-

AND

intelnuc11phki7caaMatch-

Node

intelnuc11tnkv50z_firmwareMatch-

AND

intelnuc11tnkv50zMatch-

Node

intelnuc11tnhv70lMatch-

AND

intelnuc11tnhv70l_firmwareMatch-

Node

intelnuc11tnhv50lMatch-

AND

intelnuc11tnhv50l_firmwareMatch-

Node

intelnuc11tnkv5Match-

AND

intelnuc11tnkv5_firmwareMatch-

Node

intelnuc11tnkv7Match-

AND

intelnuc11tnkv7_firmwareMatch-

Node

intelnuc11tnhv5Match-

AND

intelnuc11tnhv5_firmwareMatch-

Node

intelnuc11tnhv7Match-

AND

intelnuc11tnhv7_firmwareMatch-

Node

intelnuc11tnbv7Match-

AND

intelnuc11tnbv7_firmwareMatch-

Node

intelnuc11tnbv5Match-

AND

intelnuc11tnbv5_firmwareMatch-

Node

intelnuc11tnkv5_firmwareMatch-

AND

intelnuc11tnkv5Match-

Node

intelnuc11tnkv7_firmwareMatch-

AND

intelnuc11tnkv7Match-

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

4.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2022-31477

cvelist1 prion1 cve1 intel1