Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-38587
HistoryJan 19, 2024 - 8:15 p.m.

CVE-2023-38587

2024-01-1920:15:10
CWE-20
[email protected]
web.nvd.nist.gov
1
cve-2023-38587
input validation
intel nuc
bios
escalation of privilege

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

9.0%

JSON

Improper input validation in some Intel NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

Affected configurations

Nvd
Node
intelnuc_8_home_nuc8i3behfaMatch-
AND
intelnuc_8_home_nuc8i3behfa_firmwareMatchbecfl357.0095
Node
intelnuc_8_home_nuc8i5behfaMatch-
AND
intelnuc_8_home_nuc8i5behfa_firmwareMatchbecfl357.0095
Node
intelnuc_8_home_nuc8i5bekpaMatch-
AND
intelnuc_8_home_nuc8i5bekpa_firmwareMatchbecfl357.0095
Node
intelnuc_8_enthusiast_nuc8i7behgaMatch-
AND
intelnuc_8_enthusiast_nuc8i7behga_firmwareMatchbecfl357.0095
Node
intelnuc_8_enthusiast_nuc8i7bekqaMatch-
AND
intelnuc_8_enthusiast_nuc8i7bekqa_firmwareMatchbecfl357.0095
Node
intelnuc_kit_nuc8i3behMatch-
AND
intelnuc_kit_nuc8i3beh_firmwareMatchbecfl357.0095
Node
intelnuc_kit_nuc8i3bekMatch-
AND
intelnuc_kit_nuc8i3bek_firmwareMatchbecfl357.0095
Node
intelnuc_kit_nuc8i5behMatch-
AND
intelnuc_kit_nuc8i5beh_firmwareMatchbecfl357.0095
Node
intelnuc_kit_nuc8i5bek_firmwareMatchbecfl357.0095
AND
intelnuc_kit_nuc8i5bekMatch-
Node
intelnuc_kit_nuc8i7beh_firmwareMatchbecfl357.0095
AND
intelnuc_kit_nuc8i7behMatch-
Node
intelnuc_kit_nuc8i3behs_firmwareMatchbecfl357.0095
AND
intelnuc_kit_nuc8i3behsMatch-
Node
intelnuc_kit_nuc8i5behs_firmwareMatchbecfl357.0095
AND
intelnuc_kit_nuc8i5behsMatch-
Node
intelnuc_kit_nuc8i7bek_firmwareMatchbecfl357.0095
AND
intelnuc_kit_nuc8i7bekMatch-
VendorProductVersionCPE
intelnuc_8_home_nuc8i3behfa-cpe:2.3:h:intel:nuc_8_home_nuc8i3behfa:-:*:*:*:*:*:*:*
intelnuc_8_home_nuc8i3behfa_firmwarebecfl357.0095cpe:2.3:o:intel:nuc_8_home_nuc8i3behfa_firmware:becfl357.0095:*:*:*:*:*:*:*
intelnuc_8_home_nuc8i5behfa-cpe:2.3:h:intel:nuc_8_home_nuc8i5behfa:-:*:*:*:*:*:*:*
intelnuc_8_home_nuc8i5behfa_firmwarebecfl357.0095cpe:2.3:o:intel:nuc_8_home_nuc8i5behfa_firmware:becfl357.0095:*:*:*:*:*:*:*
intelnuc_8_home_nuc8i5bekpa-cpe:2.3:h:intel:nuc_8_home_nuc8i5bekpa:-:*:*:*:*:*:*:*
intelnuc_8_home_nuc8i5bekpa_firmwarebecfl357.0095cpe:2.3:o:intel:nuc_8_home_nuc8i5bekpa_firmware:becfl357.0095:*:*:*:*:*:*:*
intelnuc_8_enthusiast_nuc8i7behga-cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7behga:-:*:*:*:*:*:*:*
intelnuc_8_enthusiast_nuc8i7behga_firmwarebecfl357.0095cpe:2.3:o:intel:nuc_8_enthusiast_nuc8i7behga_firmware:becfl357.0095:*:*:*:*:*:*:*
intelnuc_8_enthusiast_nuc8i7bekqa-cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7bekqa:-:*:*:*:*:*:*:*
intelnuc_8_enthusiast_nuc8i7bekqa_firmwarebecfl357.0095cpe:2.3:o:intel:nuc_8_enthusiast_nuc8i7bekqa_firmware:becfl357.0095:*:*:*:*:*:*:*
Rows per page:
1-10 of 261

Related

prion 1
cvelist 1
cve 1
intel 1
prion
prion
Input validation
2024-01-19 20:15:00
cvelist
cvelist
CVE-2023-38587
2024-01-19 20:03:09
cve
cve
CVE-2023-38587
2024-01-19 20:15:10
intel
intel
Intelยฎ NUC Advisory
2024-01-09 00:00:00

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

9.0%

JSON
Related for NVD:CVE-2023-38587
prion1cvelist1cve1intel1