Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-29500
HistoryAug 11, 2023 - 3:15 a.m.

CVE-2023-29500

2023-08-1103:15:31
CWE-200
[email protected]
web.nvd.nist.gov
cve-2023-29500
sensitive information exposure
unauthorized access
bios firmware
intel nucs
privilege user
information disclosure
local access

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Exposure of sensitive information to an unauthorized actor in BIOS firmware for some Intelยฎ NUCs may allow a privilege user to potentially enable information disclosure via local access.

Affected configurations

NVD
Node
intelnuc_11_performance_kit_nuc11pahi70z_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi70zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi50z_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi50zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi30z_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi30zMatch-
Node
intelnuc_11_performance_kit_nuc11pahi3_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi3Match-
Node
intelnuc_11_performance_kit_nuc11pahi5_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi5Match-
Node
intelnuc_11_performance_kit_nuc11pahi7_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11pahi7Match-
Node
intelnuc_11_performance_kit_nuc11paki3_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11paki3Match-
Node
intelnuc_11_performance_kit_nuc11paki5_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11paki5Match-
Node
intelnuc_11_performance_kit_nuc11paki7_firmwareMatch-
AND
intelnuc_11_performance_kit_nuc11paki7Match-
Node
intelnuc_11_performance_mini_pc_nuc11paqi50wa_firmwareMatch-
AND
intelnuc_11_performance_mini_pc_nuc11paqi50waMatch-
Node
intelnuc_11_performance_mini_pc_nuc11paqi70qa_firmwareMatch-
AND
intelnuc_11_performance_mini_pc_nuc11paqi70qaMatch-

Related

prion 1
cvelist 1
cve 1
intel 1
prion
prion
Information disclosure
2023-08-11 03:15:00
cvelist
cvelist
CVE-2023-29500
2023-08-11 02:37:20
cve
cve
CVE-2023-29500
2023-08-11 03:15:31
intel
intel
Intelยฎ NUC Kit and Mini PC BIOS Firmware Advisory
2023-08-08 00:00:00

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for NVD:CVE-2023-29500
prion1cvelist1cve1intel1