Improper input validation for some Intel NUC BIOS firmware before version IN0048 may allow a privileged user to potentially enable escalation of privilege via local access.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:HIntel Nuc 8 Mainstream G Kit Nuc8i5inh
HWIntelwszystkie wersjeIntel Nuc 8 Mainstream G Kit Nuc8i5inh Firmware
OSIntel< inwhl357.0049Intel Nuc 8 Mainstream G Kit Nuc8i7inh
HWIntelwszystkie wersjeIntel Nuc 8 Mainstream G Kit Nuc8i7inh Firmware
OSIntel< inwhl357.0049
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Powiązane podatności
CVE-2021-33164HIGH8.2ten sam produkt
Improper access control in BIOS firmware for some Intel(R) NUCs before version INWHL357.0046 may allow a privi...
CVE-2020-12336HIGH7.8ten sam produkt
Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an authenticated user to...
CVE-2020-24525HIGH7.8ten sam produkt
Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an authenticated user ...
CVE-2020-0530HIGH7.8ten sam produkt
Improper buffer restrictions in firmware for Intel(R) NUC may allow an authenticated user to potentially enabl...
CVE-2023-28722MEDIUM6.7ten sam produkt
Improper buffer restrictions for some Intel NUC BIOS firmware before version IN0048 may allow a privileged use...