Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-33176
HistoryNov 11, 2022 - 4:15 p.m.

CVE-2022-33176

2022-11-1116:15:15
CWE-20
[email protected]
web.nvd.nist.gov
cve-2022-33176
input validation
bios firmware
intel nuc 11
privilege escalation

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

Improper input validation in BIOS firmware for some Intelยฎ NUC 11 Performance kits and Intelยฎ NUC 11 Performance Mini PCs before version PATGL357.0042 may allow a privileged user to potentially enable escalation of privilege via local access.

Affected configurations

NVD
Node
intelnuc_11_performance_kit_nuc11pahi30z_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11pahi30zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi50z_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11pahi50zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi70z_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11pahi70zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi3_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11pahi3Match-
Node
intelnuc_11_performance_kit_nuc11pahi5_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11pahi5Match-
Node
intelnuc_11_performance_kit_nuc11pahi7_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11pahi7Match-
Node
intelnuc_11_performance_kit_nuc11paki3_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11paki3Match-
Node
intelnuc_11_performance_kit_nuc11paki5_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11paki5Match-
Node
intelnuc_11_performance_kit_nuc11paki7_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_kit_nuc11paki7Match-
Node
intelnuc_11_performance_mini_pc_nuc11paqi50wa_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_mini_pc_nuc11paqi50waMatch-
Node
intelnuc_11_performance_mini_pc_nuc11paqi70qa_firmwareRange<patgl357.0042
AND
intelnuc_11_performance_mini_pc_nuc11paqi70qaMatch-

Related

cvelist 1
cve 1
prion 1
intel 1
cvelist
cvelist
CVE-2022-33176
2022-11-11 15:48:49
cve
cve
CVE-2022-33176
2022-11-11 16:15:15
prion
prion
Input validation
2022-11-11 16:15:00
intel
intel
Intelยฎ NUC Firmware Advisory
2023-02-16 00:00:00

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON
Related for NVD:CVE-2022-33176
cvelist1cve1prion1intel1