Lucene search
HistoryMay 10, 2023 - 2:15 p.m.
CVE-2022-38101
intel nuc
bios update
uncontrolled search path
escalation of privilege
local access
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Uncontrolled search path in some Intel® NUC Chaco Canyon BIOS update software before version iFlashV Windows 5.13.00.2105 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
inteliflashvRange<5.13.00.2105windows
intelnuc_8_rugged_kit_nuc8cchkrMatch-
ORintelnuc_board_nuc8cchbMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | iflashv | * | cpe:2.3:a:intel:iflashv:*:*:*:*:*:windows:*:* |
| intel | nuc_8_rugged_kit_nuc8cchkr | - | cpe:2.3:h:intel:nuc_8_rugged_kit_nuc8cchkr:-:*:*:*:*:*:*:* |
| intel | nuc_board_nuc8cchb | - | cpe:2.3:h:intel:nuc_board_nuc8cchb:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-38101
2023-05-10 13:17:19
intel
intel
Intel® NUC BIOS Update Software Advisory
2023-05-09 00:00:00
prion
prion
Design/Logic Flaw
2023-05-10 14:15:00
cve
cve
CVE-2022-38101
2023-05-10 14:15:13
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2022-38101