Lucene search
HistoryAug 18, 2022 - 9:15 p.m.
CVE-2022-34345
cve-2022-34345
input validation
intel nuc
firmware
privilege escalation
physical access
CVSS3
6.2
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.6%
Improper input validation in the firmware for some Intel® NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via physical access.
Affected configurations
Node
intellapbc510_firmwareRange<bc0076
intellapbc510Match-
Node
intellapbc710_firmwareRange<bc0076
intellapbc710Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | lapbc510_firmware | * | cpe:2.3:o:intel:lapbc510_firmware:*:*:*:*:*:*:*:* |
| intel | lapbc510 | - | cpe:2.3:h:intel:lapbc510:-:*:*:*:*:*:*:* |
| intel | lapbc710_firmware | * | cpe:2.3:o:intel:lapbc710_firmware:*:*:*:*:*:*:*:* |
| intel | lapbc710 | - | cpe:2.3:h:intel:lapbc710:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-34345
2022-08-18 20:05:20
prion
prion
Input validation
2022-08-18 21:15:00
cve
cve
CVE-2022-34345
2022-08-18 21:15:08
CVE-2022-2154
2022-09-20 18:15:10
nvd
nvd
CVE-2022-2154
2022-09-20 18:15:10
intel
intel
Intel® NUC Laptop Kit Advisory
2023-07-07 00:00:00
CVSS3
6.2
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.6%
Related for NVD:CVE-2022-34345